Critical Vulnerability Information Revealed …

Critical Vulnerability Information Revealed …

Ledger Nano S Wallet Critical Vulnerability Information Revealed

Sergei Lappo, a student of St. Petersburg Polytechnic University, shared information on a critical vulnerability of the Ledger Nano S hardware crypto wallets on his blog. Initially, he contacted the manufacturer as part of a bug-catching program in November 2018, and in mid-January Ledger released firmware version 1.5. 5, informing then that it contains a fix for a critical vulnerability in the application for working with bitcoin wallets, but without specifying details. Now that the problem has been resolved and enough time has passed, Lappo decided to disclose information about his discovery..

According to his statement, a compromised wallet can send all available funds to an attacker while the user attempts to initiate a small transaction. In this case, before sending a transaction, nothing will indicate a problem.

As you know, when a transaction is sent from a bitcoin wallet, all funds contained in one or more unspent outputs are spent. If the size of the requested transaction turns out to be less than the amount of unspent outputs, a new address is generated in the blockchain (the so-called change-address or address for change), to which surplus funds available for further spending are transferred.

The Ledger Nano S wallets, in this case, however, did not verify that the balances were credited to the change-address, and did not display the second exit with which these funds were supposed to be returned, which opened an additional vector for the attack.

Lappo also attached a video showing how when transferring bitcoins for $ 1 between wallets, all available funds are debited to a third-party wallet..

Critical Vulnerability Information Revealed ...

However, on Reddit you can find a number of complaints from the owners of the Ledger Nano S, claiming that the firmware version 1.5.5, which is current at the moment, turned their devices into “brick”. To solve the problem, Ledger released a specialized tool, which, judging by the comments on the network, does not work in all cases, which is why users have to contact support on an individual basis..

Critical vulnerability information released ...

Similar articles

admin