Stack-Based Buffer Overflow in Bitcoin Core Software by Bitcoin
CVE-2017-18350
5.9MEDIUM
What is CVE-2017-18350?
A critical flaw exists in Bitcoin Core software, namely bitcoind and Bitcoin-Qt versions prior to 0.15.1, involving a stack-based buffer overflow vulnerability. When an attacker controls a SOCKS proxy server, a signed integer error can arise when the server replies with an unexpected target domain name. This can lead to significant security risks, including arbitrary code execution and exposure of sensitive user information.