mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-08 10:14:49 +02:00
0xMarcio
1.1 KiB
1.1 KiB
CVE-2018-1000093
Description
CryptoNote version version 0.8.9 and possibly later contain a local RPC server which does not require authentication, as a result the walletd and the simplewallet RPC daemons will process any commands sent to them, resulting in remote command execution and a takeover of the cryptocurrency wallet if an attacker can trick an application such as a web browser into connecting and sending a command for example. This attack appears to be exploitable via a victim visiting a webpage hosting malicious content that trigger such behavior.
POC
Reference
- https://github.com/cryptonotefoundation/cryptonote/issues/172
- https://www.ayrx.me/cryptonote-unauthenticated-json-rpc
Github
No PoCs found on GitHub currently.