Tor before 0.2.1.22, and 0.2.2.x before 0.2.2.7-alpha, when functioning as a bridge directory authority, allows remote attackers to obtain sensitive information about bridge identities and bridge descriptors via a dbg-stability.txt directory query.
CPE | Name | Operator | Version |
---|---|---|---|
tor | eq | 0.1.11-alpha | |
tor | eq | 0.2.1.1.14 | |
tor | eq | 0.1.1.6 | |
tor | eq | 0.1.1.9 | |
tor | eq | 0.0.6.2 | |
tor | eq | 0.2.1.1.12 | |
tor | eq | 0.1.21-alphacvs | |
tor | eq | 0.1.0.18 | |
tor | eq | 0.0.2-pre24 | |
tor | eq | 0.2.1.1.16 |