PT-2019-9742 · Phore · Phore

Published

2019-11-05

Updated

2019-11-06

CVE-2018-19157

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Phore versions prior to 1.3.3.1

Description The issue allows a remote denial of service. An attacker can exploit this by acquiring a small amount of stake or coins in the system and sending invalid headers or blocks, which are then stored on the victim's disk.

Recommendations For versions prior to 1.3.3.1, update to a version that contains a fix for this issue to prevent remote denial of service attacks.

Fix

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

CVE-2018-19157

Affected Products

Phore

PT-2019-9742 · Phore · Phore

CVE-2018-19157

Weakness Enumeration

Related Identifiers

Affected Products

References · 4