CVE-2017-16930

CRITICAL

Claymore Dual GPU Miner 10.1 - Remote Code Execution via Stack-Based Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-16930. PoCs published by tintinweb.

AI-analyzed exploit summary This exploit demonstrates a buffer overflow vulnerability in Claymore's Dual Miner via overly long JSON-RPC method names or fields, causing a crash. It also includes a path traversal vector to retrieve arbitrary files.

Description

The remote management interface on the Claymore Dual GPU miner 10.1 allows an unauthenticated remote attacker to execute arbitrary code due to a stack-based buffer overflow in the request handler. This can be exploited via a long API request that is mishandled during logging.

Exploits (1)

exploitdb WORKING POC
by tintinweb · pythonremotewindows
https://www.exploit-db.com/exploits/43231

This exploit demonstrates a buffer overflow vulnerability in Claymore's Dual Miner via overly long JSON-RPC method names or fields, causing a crash. It also includes a path traversal vector to retrieve arbitrary files.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Claymore's Dual ETH + DCR/SC/LBC/PASC GPU Miner v10.0
No auth needed
Prerequisites: Network access to the miner's remote management port (default: 3333)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/43231/
Mailing List, Third Party Advisory x_refsource_misc
http://www.openwall.com/lists/oss-security/2017/12/04/3

Scores

CVSS v3 9.8
EPSS 0.3434
EPSS Percentile 98.2%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-119
Status published
Products (1)
claymore_dual_miner_project/claymore_dual_miner 10.1
Published Dec 05, 2017
Tracked Since Feb 18, 2026