Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The GetBlockHeadersMsg handler in the LES protocol implementation in Go Ethereum (aka geth) before 1.8.11 may lead to an access violation because of an integer signedness error for the array index, which allows attackers to launch a Denial of Service attack by sending a packet with a -1 query.Skip value. The vulnerable remote node would be crashed by such an attack immediately, aka the EPoD (Ethereum Packet of Death) issue.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Go Ethereum 安全漏洞
Vulnerability Description
Go Ethereum(又名geth)是一款使用Go语言编写的以太坊协议的开源实现。 geth 1.8.11之前版本中的LES协议实现的GetBlockHeadersMsg handler存在安全漏洞。攻击者可通过发送数据包利用该漏洞造成拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A