CVE-2017-18350

Publication date

2020-03-12 20:13:32

Family

mitre

State

PUBLISHED

Description

bitcoind and Bitcoin-Qt prior to 0.15.1 have a stack-based buffer overflow if an attacker-controlled SOCKS proxy server is used. This results from an integer signedness error when the proxy server responds with an acknowledgement of an unexpected target domain name.