CVE-2005-2643

2005-08-23T04:00:00
ID CVE-2005-2643
Type cve
Reporter cve@mitre.org
Modified 2016-10-18T03:29:00

Description

Tor 0.1.0.13 and earlier, and experimental versions 0.1.1.4-alpha and earlier, does not reject certain weak keys when using ephemeral Diffie-Hellman (DH) handshakes, which allows malicious Tor servers to obtain the keys that a client uses for other systems in the circuit.