Remote Denial of Service Vulnerability in ColossusCoinXT 1.0.5: Exploiting Invalid Headers/Blocks Storage

Remote Denial of Service Vulnerability in ColossusCoinXT 1.0.5: Exploiting Invalid Headers/Blocks Storage

CVE-2018-19158 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

ColossusCoinXT through 1.0.5 (a chain-based proof-of-stake cryptocurrency) allows a remote denial of service, exploitable by an attacker who acquires even a small amount of stake/coins in the system. The attacker sends invalid headers/blocks, which are stored on the victim's disk.

Learn more about our Web Application Penetration Testing UK.