Lucene search
HistoryDec 23, 2011 - 3:59 a.m.
CVE-2011-2778
cve
2011
2778
heap-based
buffer
overflows
tor
denial of service
memory corruption
arbitrary code
socks connection
socksport
socks proxy configuration
7.9 High
AI Score
Confidence
Low
7.6 High
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.016 Low
EPSS
Percentile
87.5%
Multiple heap-based buffer overflows in Tor before 0.2.2.35 allow remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code by (1) establishing a SOCKS connection to SocksPort or (2) leveraging a SOCKS proxy configuration.
Related
openvas
openvas
Debian Security Advisory DSA 2363-1 (tor)
2012-02-11 00:00:00
Debian: Security Advisory (DSA-2363-1)
2012-02-11 00:00:00
Gentoo Security Advisory GLSA 201201-12 (Tor)
2012-02-12 00:00:00
nessus
nessus
Debian DSA-2363-1 : tor - buffer overflow
2012-01-12 00:00:00
Fedora 16 : tor-0.2.2.35-1601.fc16 (2011-17248)
2012-01-11 00:00:00
GLSA-201201-12 : Tor: Multiple vulnerabilities
2012-01-24 00:00:00
debian
debian
[SECURITY] [DSA 2363-1] tor security update
2011-12-16 18:30:21
prion
prion
Heap overflow
2011-12-23 03:59:00
cvelist
cvelist
CVE-2011-2778
2011-12-23 02:00:00
securityvulns
securityvulns
tor buffer overflows
2011-12-26 00:00:00
debiancve
debiancve
CVE-2011-2778
2011-12-23 03:59:00
ubuntucve
ubuntucve
CVE-2011-2778
2011-12-23 00:00:00
thn
thn
Tor Vulnerable to Remote arbitrary code Execution
2012-01-23 20:38:00
gentoo
gentoo
Tor: Multiple vulnerabilities
2012-01-23 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: tor-0.2.2.35-1601.fc16
2012-01-11 06:15:50
7.9 High
AI Score
Confidence
Low
7.6 High
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.016 Low
EPSS
Percentile
87.5%
Related for CVE-2011-2778