Lucene search
MitreCVE-2010-0384HistoryJan 25, 2010 - 7:30 p.m.
CVE-2010-0384
2010-01-2519:30:01
CWE-200
mitre
web.nvd.nist.gov
42
cve-2010-0384
tor
directory mirror
logging
vulnerability
nvd
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.1
Confidence
Low
EPSS
0
Percentile
5.1%
Tor 0.2.2.x before 0.2.2.7-alpha, when functioning as a directory mirror, does not prevent logging of the client IP address upon detection of erroneous client behavior, which might make it easier for local users to discover the identities of clients in opportunistic circumstances by reading log files.
Affected configurations
Node
tortorMatch0.2.2.1
ORtortorMatch0.2.2.1alpha
ORtortorMatch0.2.2.2
ORtortorMatch0.2.2.2alpha
ORtortorMatch0.2.2.3
ORtortorMatch0.2.2.3alpha
ORtortorMatch0.2.2.4
ORtortorMatch0.2.2.4alpha
ORtortorMatch0.2.2.5
ORtortorMatch0.2.2.5alpha
ORtortorMatch0.2.2.6
ORtortorMatch0.2.2.6alpha
| Vendor | Product | Version | CPE |
|---|---|---|---|
| tor | tor | 0.2.2.1 | cpe:2.3:a:tor:tor:0.2.2.1:*:*:*:*:*:*:* |
| tor | tor | 0.2.2.1 | cpe:2.3:a:tor:tor:0.2.2.1:alpha:*:*:*:*:*:* |
| tor | tor | 0.2.2.2 | cpe:2.3:a:tor:tor:0.2.2.2:*:*:*:*:*:*:* |
| tor | tor | 0.2.2.2 | cpe:2.3:a:tor:tor:0.2.2.2:alpha:*:*:*:*:*:* |
| tor | tor | 0.2.2.3 | cpe:2.3:a:tor:tor:0.2.2.3:*:*:*:*:*:*:* |
| tor | tor | 0.2.2.3 | cpe:2.3:a:tor:tor:0.2.2.3:alpha:*:*:*:*:*:* |
| tor | tor | 0.2.2.4 | cpe:2.3:a:tor:tor:0.2.2.4:*:*:*:*:*:*:* |
| tor | tor | 0.2.2.4 | cpe:2.3:a:tor:tor:0.2.2.4:alpha:*:*:*:*:*:* |
| tor | tor | 0.2.2.5 | cpe:2.3:a:tor:tor:0.2.2.5:*:*:*:*:*:*:* |
| tor | tor | 0.2.2.5 | cpe:2.3:a:tor:tor:0.2.2.5:alpha:*:*:*:*:*:* |
Related
openvas
openvas
Tor Clients Information Disclosure Vulnerability (win)
2010-01-28 00:00:00
Tor Clients Information Disclosure Vulnerability - Linux
2010-01-28 00:00:00
Tor Clients Information Disclosure Vulnerability (Linux)
2010-01-28 00:00:00
prion
prion
Design/Logic Flaw
2010-01-25 19:30:00
nvd
nvd
CVE-2010-0384
2010-01-25 19:30:01
ubuntucve
ubuntucve
CVE-2010-0384
2010-01-25 00:00:00
debiancve
debiancve
CVE-2010-0384
2010-01-25 19:30:01
seebug
seebug
Torζ₯εΏζδ»ΆδΏ‘ζ―ζ³ι²ζΌζ΄
2010-01-27 00:00:00
cvelist
cvelist
CVE-2010-0384
2010-01-25 19:00:00
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.1
Confidence
Low
EPSS
0
Percentile
5.1%
Related for CVE-2010-0384