Lucene search

[email protected]CVE-2012-5573

HistoryJan 01, 2013 - 12:35 p.m.

CVE-2012-5573

2013-01-0112:35:14

CWE-399

[email protected]

web.nvd.nist.gov

cve-2012-5573

tor

denial of service

memory consumption

bypass

flow-control restrictions

nvd

6.4 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.038 Low

EPSS

Percentile

91.8%

JSON

The connection_edge_process_relay_cell function in or/relay.c in Tor before 0.2.3.25 maintains circuits even if an unexpected SENDME cell arrives, which might allow remote attackers to cause a denial of service (memory consumption or excessive cell reception rate) or bypass intended flow-control restrictions via a RELAY_COMMAND_SENDME command.

Affected configurations

NVD

Node

torprojecttorRange≤0.2.3.24rc

torprojecttorMatch0.0.2

torprojecttorMatch0.0.2pre13

torprojecttorMatch0.0.2pre14

torprojecttorMatch0.0.2pre15

torprojecttorMatch0.0.2pre16

torprojecttorMatch0.0.2pre17

torprojecttorMatch0.0.2pre18

torprojecttorMatch0.0.2pre19

torprojecttorMatch0.0.2pre20

torprojecttorMatch0.0.2pre21

torprojecttorMatch0.0.2pre22

torprojecttorMatch0.0.2pre23

torprojecttorMatch0.0.2pre24

torprojecttorMatch0.0.2pre25

torprojecttorMatch0.0.2pre26

torprojecttorMatch0.0.2pre27

torprojecttorMatch0.0.3

torprojecttorMatch0.0.4

torprojecttorMatch0.0.5

torprojecttorMatch0.0.6

torprojecttorMatch0.0.6.1

torprojecttorMatch0.0.6.2

torprojecttorMatch0.0.7

torprojecttorMatch0.0.7.1

torprojecttorMatch0.0.7.2

torprojecttorMatch0.0.7.3

torprojecttorMatch0.0.8.1

torprojecttorMatch0.0.9.1

torprojecttorMatch0.0.9.2

torprojecttorMatch0.0.9.3

torprojecttorMatch0.0.9.4

torprojecttorMatch0.0.9.5

torprojecttorMatch0.0.9.6

torprojecttorMatch0.0.9.7

torprojecttorMatch0.0.9.8

torprojecttorMatch0.0.9.9

torprojecttorMatch0.0.9.10

torprojecttorMatch0.1.0.10

torprojecttorMatch0.1.0.11

torprojecttorMatch0.1.0.12

torprojecttorMatch0.1.0.13

torprojecttorMatch0.1.0.14

torprojecttorMatch0.1.0.15

torprojecttorMatch0.1.0.16

torprojecttorMatch0.1.0.17

torprojecttorMatch0.1.1.20

torprojecttorMatch0.1.1.21

torprojecttorMatch0.1.1.22

torprojecttorMatch0.1.1.23

torprojecttorMatch0.1.1.24

torprojecttorMatch0.1.1.25

torprojecttorMatch0.1.1.26

torprojecttorMatch0.1.2.13

torprojecttorMatch0.1.2.14

torprojecttorMatch0.1.2.15

torprojecttorMatch0.1.2.16

torprojecttorMatch0.1.2.17

torprojecttorMatch0.1.2.18

torprojecttorMatch0.1.2.19

torprojecttorMatch0.2.0.30

torprojecttorMatch0.2.0.31

torprojecttorMatch0.2.0.32

torprojecttorMatch0.2.0.33

torprojecttorMatch0.2.0.34

torprojecttorMatch0.2.0.35

torprojecttorMatch0.2.2.18

torprojecttorMatch0.2.2.19

torprojecttorMatch0.2.2.20

torprojecttorMatch0.2.2.21

torprojecttorMatch0.2.2.22

torprojecttorMatch0.2.2.23

torprojecttorMatch0.2.2.24

torprojecttorMatch0.2.2.25

torprojecttorMatch0.2.2.26

torprojecttorMatch0.2.2.27

torprojecttorMatch0.2.2.28

torprojecttorMatch0.2.2.29

torprojecttorMatch0.2.2.30

torprojecttorMatch0.2.2.31

torprojecttorMatch0.2.2.32

torprojecttorMatch0.2.2.33

torprojecttorMatch0.2.2.34

torprojecttorMatch0.2.2.35

torprojecttorMatch0.2.2.36

torprojecttorMatch0.2.2.37

torprojecttorMatch0.2.2.38

torprojecttorMatch0.2.3

torprojecttorMatch0.2.3.13alpha

torprojecttorMatch0.2.3.14alpha

torprojecttorMatch0.2.3.15alpha

torprojecttorMatch0.2.3.16alpha

torprojecttorMatch0.2.3.17beta

torprojecttorMatch0.2.3.18rc

torprojecttorMatch0.2.3.19rc

torprojecttorMatch0.2.3.20rc

torprojecttorMatch0.2.3.21rc

torprojecttorMatch0.2.3.22rc

torprojecttorMatch0.2.3.23rc

CPENameOperatorVersion
torproject:tortorproject torle0.2.3.24
torproject:tortorproject toreq0.0.2
torproject:tortorproject toreq0.0.3
torproject:tortorproject toreq0.0.4
torproject:tortorproject toreq0.0.5
torproject:tortorproject toreq0.0.6
torproject:tortorproject toreq0.0.6.1
torproject:tortorproject toreq0.0.6.2
torproject:tortorproject toreq0.0.7
torproject:tortorproject toreq0.0.7.1

CPE	Name	Operator	Version
torproject:tor	torproject tor	le	0.2.3.24
torproject:tor	torproject tor	eq	0.0.2
torproject:tor	torproject tor	eq	0.0.3
torproject:tor	torproject tor	eq	0.0.4
torproject:tor	torproject tor	eq	0.0.5
torproject:tor	torproject tor	eq	0.0.6
torproject:tor	torproject tor	eq	0.0.6.1
torproject:tor	torproject tor	eq	0.0.6.2
torproject:tor	torproject tor	eq	0.0.7
torproject:tor	torproject tor	eq	0.0.7.1