CVE-2018-1000093 Information

Feb 14, 2021 cve

Description

CryptoNote version version 0.8.9 and possibly later contain a local RPC server which does not require authentication as a result the walletd and the simplewallet RPC daemons will process any commands sent to them resulting in remote command execution and a takeover of the cryptocurrency wallet if an attacker can trick an application such as a web browser into connecting and sending a command for example. This attack appears to be exploitable via a victim visiting a webpage hosting malicious content that trigger such behavior.

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Reference

https://github.com/amjuarez/bytecoin/issues/217 https://github.com/cryptonotefoundation/cryptonote/issues/172 https://www.ayrx.me/cryptonote-unauthenticated-json-rpc

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

REQUIRED

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

8.8

Share on: