Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2011-2778
HistoryDec 23, 2011 - 3:59 a.m.

CVE-2011-2778

2011-12-2303:59:22
CWE-119
[email protected]
web.nvd.nist.gov

7.6 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

Low

0.016 Low

EPSS

Percentile

87.6%

JSON

Multiple heap-based buffer overflows in Tor before 0.2.2.35 allow remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code by (1) establishing a SOCKS connection to SocksPort or (2) leveraging a SOCKS proxy configuration.

Affected configurations

NVD
Node
tortorRange0.2.2.34
OR
tortorMatch0.0.2
OR
tortorMatch0.0.3
OR
tortorMatch0.0.4
OR
tortorMatch0.0.5
OR
tortorMatch0.0.6
OR
tortorMatch0.0.6.1
OR
tortorMatch0.0.6.2
OR
tortorMatch0.0.7
OR
tortorMatch0.0.7.1
OR
tortorMatch0.0.7.2
OR
tortorMatch0.0.7.3
OR
tortorMatch0.0.8
OR
tortorMatch0.0.8.1
OR
tortorMatch0.0.9
OR
tortorMatch0.0.9.1
OR
tortorMatch0.0.9.2
OR
tortorMatch0.0.9.3
OR
tortorMatch0.0.9.4
OR
tortorMatch0.0.9.5
OR
tortorMatch0.0.9.6
OR
tortorMatch0.0.9.7
OR
tortorMatch0.0.9.8
OR
tortorMatch0.0.9.9
OR
tortorMatch0.0.9.10
OR
tortorMatch0.1.0.1
OR
tortorMatch0.1.0.2
OR
tortorMatch0.1.0.3
OR
tortorMatch0.1.0.4
OR
tortorMatch0.1.0.5
OR
tortorMatch0.1.0.6
OR
tortorMatch0.1.0.7
OR
tortorMatch0.1.0.8
OR
tortorMatch0.1.0.9
OR
tortorMatch0.1.0.10
OR
tortorMatch0.1.0.11
OR
tortorMatch0.1.0.12
OR
tortorMatch0.1.0.13
OR
tortorMatch0.1.0.14
OR
tortorMatch0.1.0.15
OR
tortorMatch0.1.0.16
OR
tortorMatch0.1.0.17
OR
tortorMatch0.1.0.18
OR
tortorMatch0.1.0.19
OR
tortorMatch0.1.1
OR
tortorMatch0.1.1.1
OR
tortorMatch0.1.1.1alpha
OR
tortorMatch0.1.1.2
OR
tortorMatch0.1.1.2alpha
OR
tortorMatch0.1.1.3
OR
tortorMatch0.1.1.3alpha
OR
tortorMatch0.1.1.4
OR
tortorMatch0.1.1.4alpha
OR
tortorMatch0.1.1.5
OR
tortorMatch0.1.1.5alpha
OR
tortorMatch0.1.1.6
OR
tortorMatch0.1.1.6alpha
OR
tortorMatch0.1.1.7
OR
tortorMatch0.1.1.7alpha
OR
tortorMatch0.1.1.8
OR
tortorMatch0.1.1.8alpha
OR
tortorMatch0.1.1.9
OR
tortorMatch0.1.1.9alpha
OR
tortorMatch0.1.1.10
OR
tortorMatch0.1.1.10alpha
OR
tortorMatch0.1.1.11
OR
tortorMatch0.1.1.12
OR
tortorMatch0.1.1.13
OR
tortorMatch0.1.1.14
OR
tortorMatch0.1.1.15
OR
tortorMatch0.1.1.16
OR
tortorMatch0.1.1.17
OR
tortorMatch0.1.1.18
OR
tortorMatch0.1.1.19
OR
tortorMatch0.1.1.20
OR
tortorMatch0.1.1.21
OR
tortorMatch0.1.1.22
OR
tortorMatch0.1.1.23
OR
tortorMatch0.1.1.25
OR
tortorMatch0.1.1.26
OR
tortorMatch0.1.2.1alpha
OR
tortorMatch0.1.2.1alpha-cvs
OR
tortorMatch0.1.2.2
OR
tortorMatch0.1.2.3alpha
OR
tortorMatch0.1.2.4
OR
tortorMatch0.1.2.5
OR
tortorMatch0.1.2.5alpha
OR
tortorMatch0.1.2.6alpha
OR
tortorMatch0.1.2.7alpha
OR
tortorMatch0.1.2.8beta
OR
tortorMatch0.1.2.9
OR
tortorMatch0.1.2.10
OR
tortorMatch0.1.2.11
OR
tortorMatch0.1.2.12
OR
tortorMatch0.1.2.13
OR
tortorMatch0.1.2.14
OR
tortorMatch0.1.2.15
OR
tortorMatch0.1.2.16
OR
tortorMatch0.1.2.17
OR
tortorMatch0.1.2.18
OR
tortorMatch0.1.2.19
OR
tortorMatch0.1.2.30
OR
tortorMatch0.1.2.31
OR
tortorMatch0.2.0.1alpha
OR
tortorMatch0.2.0.2alpha
OR
tortorMatch0.2.0.3alpha
OR
tortorMatch0.2.0.4alpha
OR
tortorMatch0.2.0.5alpha
OR
tortorMatch0.2.0.6alpha
OR
tortorMatch0.2.0.7alpha
OR
tortorMatch0.2.0.8alpha
OR
tortorMatch0.2.0.9alpha
OR
tortorMatch0.2.0.10alpha
OR
tortorMatch0.2.0.11alpha
OR
tortorMatch0.2.0.12alpha
OR
tortorMatch0.2.0.13alpha
OR
tortorMatch0.2.0.14alpha
OR
tortorMatch0.2.0.15alpha
OR
tortorMatch0.2.0.16alpha
OR
tortorMatch0.2.0.17alpha
OR
tortorMatch0.2.0.18alpha
OR
tortorMatch0.2.0.19alpha
OR
tortorMatch0.2.0.20alpha
OR
tortorMatch0.2.0.21alpha
OR
tortorMatch0.2.0.22alpha
OR
tortorMatch0.2.0.23alpha
OR
tortorMatch0.2.0.24alpha
OR
tortorMatch0.2.0.25alpha
OR
tortorMatch0.2.0.26alpha
OR
tortorMatch0.2.0.27alpha
OR
tortorMatch0.2.0.28alpha
OR
tortorMatch0.2.0.29
OR
tortorMatch0.2.0.29alpha
OR
tortorMatch0.2.0.30
OR
tortorMatch0.2.0.30alpha
OR
tortorMatch0.2.0.31
OR
tortorMatch0.2.0.31alpha
OR
tortorMatch0.2.0.32alpha
OR
tortorMatch0.2.0.33
OR
tortorMatch0.2.0.34alpha
OR
tortorMatch0.2.0.35
OR
tortorMatch0.2.1.1alpha
OR
tortorMatch0.2.1.1.1alpha
OR
tortorMatch0.2.1.1.2alpha
OR
tortorMatch0.2.1.1.3alpha
OR
tortorMatch0.2.1.1.4alpha
OR
tortorMatch0.2.1.1.5alpha
OR
tortorMatch0.2.1.1.6alpha
OR
tortorMatch0.2.1.1.7alpha
OR
tortorMatch0.2.1.1.8alpha
OR
tortorMatch0.2.1.1.9alpha
OR
tortorMatch0.2.1.1.10alpha
OR
tortorMatch0.2.1.1.11alpha
OR
tortorMatch0.2.1.1.12
OR
tortorMatch0.2.1.1.12alpha
OR
tortorMatch0.2.1.1.13
OR
tortorMatch0.2.1.1.14
OR
tortorMatch0.2.1.1.15
OR
tortorMatch0.2.1.1.16
OR
tortorMatch0.2.1.1.17
OR
tortorMatch0.2.1.1.18
OR
tortorMatch0.2.1.1.19
OR
tortorMatch0.2.1.1.20
OR
tortorMatch0.2.1.1.21
OR
tortorMatch0.2.1.1.22
OR
tortorMatch0.2.1.1.23
OR
tortorMatch0.2.1.1.24
OR
tortorMatch0.2.1.1.25
OR
tortorMatch0.2.1.1.26
OR
tortorMatch0.2.1.1.27
OR
tortorMatch0.2.1.1.28
OR
tortorMatch0.2.1.2alpha
OR
tortorMatch0.2.1.3alpha
OR
tortorMatch0.2.1.4alpha
OR
tortorMatch0.2.1.5alpha
OR
tortorMatch0.2.1.6alpha
OR
tortorMatch0.2.1.7alpha
OR
tortorMatch0.2.1.8alpha
OR
tortorMatch0.2.1.9alpha
OR
tortorMatch0.2.1.10alpha
OR
tortorMatch0.2.1.11alpha
OR
tortorMatch0.2.1.12
OR
tortorMatch0.2.1.12alpha
OR
tortorMatch0.2.1.13
OR
tortorMatch0.2.1.14
OR
tortorMatch0.2.1.15
OR
tortorMatch0.2.1.16
OR
tortorMatch0.2.1.17
OR
tortorMatch0.2.1.18
OR
tortorMatch0.2.1.19
OR
tortorMatch0.2.1.20
OR
tortorMatch0.2.1.21
OR
tortorMatch0.2.1.22
OR
tortorMatch0.2.1.23
OR
tortorMatch0.2.1.24
OR
tortorMatch0.2.1.25
OR
tortorMatch0.2.1.26
OR
tortorMatch0.2.1.27
OR
tortorMatch0.2.1.28
OR
tortorMatch0.2.1.29
OR
tortorMatch0.2.2.1
OR
tortorMatch0.2.2.1alpha
OR
tortorMatch0.2.2.2
OR
tortorMatch0.2.2.2alpha
OR
tortorMatch0.2.2.3
OR
tortorMatch0.2.2.3alpha
OR
tortorMatch0.2.2.4
OR
tortorMatch0.2.2.4alpha
OR
tortorMatch0.2.2.5
OR
tortorMatch0.2.2.5alpha
OR
tortorMatch0.2.2.6
OR
tortorMatch0.2.2.6alpha
OR
tortorMatch0.2.2.7alpha
OR
tortorMatch0.2.2.8alpha
OR
tortorMatch0.2.2.9alpha
OR
tortorMatch0.2.2.10alpha
OR
tortorMatch0.2.2.11alpha
OR
tortorMatch0.2.2.12alpha
OR
tortorMatch0.2.2.13alpha
OR
tortorMatch0.2.2.14alpha
OR
tortorMatch0.2.2.15alpha
OR
tortorMatch0.2.2.16alpha
OR
tortorMatch0.2.2.17alpha
OR
tortorMatch0.2.2.18alpha
OR
tortorMatch0.2.2.19alpha
OR
tortorMatch0.2.2.20alpha
OR
tortorMatch0.2.2.29
OR
tortorMatch0.2.2.29beta
OR
tortorMatch0.2.2.32
OR
tortorMatch0.2.2.33

Related

prion 1
securityvulns 1
cvelist 1
debian 1
nessus 3
openvas 6
cve 1
debiancve 1
ubuntucve 1
thn 1
fedora 1
gentoo 1
prion
prion
Heap overflow
2011-12-23 03:59:00
securityvulns
securityvulns
tor buffer overflows
2011-12-26 00:00:00
cvelist
cvelist
CVE-2011-2778
2011-12-23 02:00:00
debian
debian
[SECURITY] [DSA 2363-1] tor security update
2011-12-16 18:15:09
nessus
nessus
Debian DSA-2363-1 : tor - buffer overflow
2012-01-12 00:00:00
Fedora 16 : tor-0.2.2.35-1601.fc16 (2011-17248)
2012-01-11 00:00:00
GLSA-201201-12 : Tor: Multiple vulnerabilities
2012-01-24 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-2363-1)
2012-02-11 00:00:00
Debian Security Advisory DSA 2363-1 (tor)
2012-02-11 00:00:00
Fedora Update for tor FEDORA-2011-17248
2012-04-02 00:00:00
cve
cve
CVE-2011-2778
2011-12-23 03:59:22
debiancve
debiancve
CVE-2011-2778
2011-12-23 03:59:22
ubuntucve
ubuntucve
CVE-2011-2778
2011-12-23 00:00:00
thn
thn
Tor Vulnerable to Remote arbitrary code Execution
2012-01-23 20:38:00
fedora
fedora
[SECURITY] Fedora 16 Update: tor-0.2.2.35-1601.fc16
2012-01-11 06:15:50
gentoo
gentoo
Tor: Multiple vulnerabilities
2012-01-23 00:00:00

7.6 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

Low

0.016 Low

EPSS

Percentile

87.6%

JSON
Related for NVD:CVE-2011-2778
prion1securityvulns1cvelist1debian1nessus3openvas6cve1debiancve1ubuntucve1thn1fedora1gentoo1