Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-0384HistoryJan 25, 2010 - 7:30 p.m.
CVE-2010-0384
2010-01-2519:30:01
Debian Security Bug Tracker
security-tracker.debian.org
8
tor
directory mirror
logging vulnerability
client ip address
local users
log files
security
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
EPSS
0
Percentile
5.1%
Tor 0.2.2.x before 0.2.2.7-alpha, when functioning as a directory mirror, does not prevent logging of the client IP address upon detection of erroneous client behavior, which might make it easier for local users to discover the identities of clients in opportunistic circumstances by reading log files.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | tor | < 0.4.7.16-1 | tor_0.4.7.16-1_all.deb |
| Debian | 11 | all | tor | < 0.4.5.16-1 | tor_0.4.5.16-1_all.deb |
| Debian | 999 | all | tor | < 0.4.8.12-1.1 | tor_0.4.8.12-1.1_all.deb |
| Debian | 13 | all | tor | < 0.4.8.12-1.1 | tor_0.4.8.12-1.1_all.deb |
Related
openvas
openvas
Tor Clients Information Disclosure Vulnerability (win)
2010-01-28 00:00:00
Tor Clients Information Disclosure Vulnerability - Linux
2010-01-28 00:00:00
Tor Clients Information Disclosure Vulnerability (Linux)
2010-01-28 00:00:00
prion
prion
Design/Logic Flaw
2010-01-25 19:30:00
nvd
nvd
CVE-2010-0384
2010-01-25 19:30:01
ubuntucve
ubuntucve
CVE-2010-0384
2010-01-25 00:00:00
seebug
seebug
Tor日志文件信息泄露漏洞
2010-01-27 00:00:00
cve
cve
CVE-2010-0384
2010-01-25 19:30:01
cvelist
cvelist
CVE-2010-0384
2010-01-25 19:00:00
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
EPSS
0
Percentile
5.1%
Related for DEBIANCVE:CVE-2010-0384