Vulnerability in Bitcoin-Qt Affects Transaction Fee Mechanism
CVE-2013-2272

Currently unrated

Key Information:

Vendor: Bitcoin
Status: Bitcoind; Bitcoin-qt; Bitcoin Core
Vendor: CVE Published:; 12 March 2013

What is CVE-2013-2272?

A flaw in the penny-flooding protection mechanism within the CTxMemPool::accept method of bitcoind and Bitcoin-Qt allows remote attackers to exploit the system. By initiating a series of large Bitcoin transactions that inadequately compensate for transaction fees, attackers can reveal relationships between wallet addresses and their corresponding IP addresses. This vulnerability highlights the potential for privacy violations among users and poses significant risks for Bitcoin transactions, necessitating immediate awareness and mitigation strategies.

References

https://bitcointalk.org/?topic=135856

x_refsource_CONFIRM

https://en.bitcoin.it/wiki/CVEs

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Mar 12, 2013