Lucene search
+L

587 matches found

OSV
OSV
added 2011/12/23 3:59 a.m.6 views

DEBIAN-CVE-2011-4895

Tor before 0.2.2.34, when configured as a bridge, sets up circuits through a process different from the process used by a client, which makes it easier for remote attackers to enumerate bridges by observing circuit building...

4.3CVSS8.8AI score0.01617EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2011/12/23 3:59 a.m.26 views

CVE-2011-4895

Tor before 0.2.2.34, when configured as a bridge, sets up circuits through a process different from the process used by a client, which makes it easier for remote attackers to enumerate bridges by observing circuit building...

4.3CVSS7.2AI score0.01617EPSS
Exploits0References2
Prion
Prion
added 2011/12/23 3:59 a.m.16 views

Design/Logic Flaw

Tor before 0.2.2.34, when configured as a bridge, sets up circuits through a process different from the process used by a client, which makes it easier for remote attackers to enumerate bridges by observing circuit building...

4.3CVSS7.1AI score0.01617EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2011/12/23 2:0 a.m.38 views

CVE-2011-4895

Tor before 0.2.2.34, when configured as a bridge, sets up circuits through a process different from the process used by a client, which makes it easier for remote attackers to enumerate bridges by observing circuit building...

4.3CVSS4.2AI score0.01617EPSS
Exploits0
CVE
CVE
added 2011/12/23 2:0 a.m.53 views

CVE-2011-4895

Tor before 0.2.2.34, when configured as a bridge, builds circuits in a way that differs from client circuits, making it easier for remote attackers to enumerate bridges by observing circuit construction. Affects Tor code path used for bridges; vulnerability achieved through the bridge-circuit set...

4.3CVSS6.8AI score0.01617EPSS
Exploits0References1Affected Software1
ThreatPost
ThreatPost
added 2011/11/08 5:4 p.m.7 views

Researchers Warn of Prison Hacks, Opening Cell Doors

Remote hackers springing inmates from their jail cells — it sounds like a plot lifted from an old episode of “24” or “Prison Break.” But authorities are concerned by new research that claims such an attack is feasible. Research presented at the Hacker Halted conference in Miami last month by John...

2.2AI score
Exploits0References6
ThreatPost
ThreatPost
added 2011/11/08 5:3 p.m.15 views

Researchers Warn of Prison Hacks, Opening Cell Doors

In news that seems like it could be lifted from an old 24 or Prison Break plotline, authorities are concerned by new research that claims hackers could remotely open the cell doors of federal prisons. In addition to staging a jailbreak, hackers could sabotage a prison’s intercom system and...

1AI score
Exploits0References5
The Hacker News
The Hacker News
added 2011/09/28 12:23 a.m.9 views

Man-in-the-Middle Remote Attack on Diebold Touch-screen Voting Machine

Man-in-the-Middle Remote Attack on Diebold Touch-screen Voting Machine The Vulnerability Assessment Team VAT at the U.S. Dept. of Energy's Argonne National Laboratory in Illinois has managed to hack a Diebold Accuvote touch-screen voting machine. Voting machines used by as many as a quarter of...

6.8AI score
Exploits0
RedHat Linux
RedHat Linux
added 2011/06/08 3:41 p.m.3 views

(mod_dav_svn): DoS (excessive memory use) when configured to provide path-based access control

The moddavsvn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x and 1.6.x before 1.6.17, when the SVNPathAuthz shortcircuit option is enabled, allows remote attackers to cause a denial of service infinite loop and memory consumption in opportunistic circumstances by...

4.3CVSS5.9AI score0.06742EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2011/06/08 3:41 p.m.6 views

(mod_dav_svn): File contents disclosure of files configured to be unreadable by those users

The moddavsvn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x and 1.6.x before 1.6.17, when the SVNPathAuthz shortcircuit option is disabled, does not properly enforce permissions for files that had been publicly readable in the past, which allows remote attackers to...

4.3CVSS5.8AI score0.05993EPSS
Exploits2References4
ATTACKERKB
ATTACKERKB
added 2011/01/07 7:0 p.m.2 views

CVE-2009-5039

Memory leak in the gkcircuitinfodoinacf function in the H.323 implementation in Cisco IOS before 15.01XA allows remote attackers to cause a denial of service memory consumption via a large number of calls over a long duration, as demonstrated by InterZone Clear Token IZCT test traffic, aka Bug ID...

5CVSS5.6AI score0.01296EPSS
Exploits0References3
OSV
OSV
added 2010/10/04 9:0 p.m.2 views

DEBIAN-CVE-2010-3315

authz.c in the moddavsvn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x before 1.5.8 and 1.6.x before 1.6.13, when SVNPathAuthz shortcircuit is enabled, does not properly handle a named repository as a rule scope, which allows remote authenticated users to bypass...

6CVSS6.8AI score0.04216EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2009/03/03 12:0 a.m.28 views

Tor Replay Attack Vulnerability (Windows)

This host is installed with Tor Anonymity Proxy and is prone to replay attack vulnerability. OpenVAS Vulnerability Test $Id: secpodtorreplayattackvulnwin.nasl 5148 2017-01-31 13:16:55Z teissa $ Tor Replay Attack Vulnerability Windows Authors: Sharath S Copyright: Copyright c 2009 SecPod,...

5.1CVSS0.02117EPSS
Exploits1References2
NVD
NVD
added 2007/06/11 10:30 p.m.22 views

CVE-2007-3165

Tor before 0.1.2.14 can construct circuits in which an entry guard is in the same family as the exit node, which might compromise the anonymity of traffic sources and destinations by exposing traffic to inappropriate remote observers...

5CVSS6.5AI score0.01482EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2007/06/11 10:30 p.m.24 views

CVE-2007-3165

Tor before 0.1.2.14 can construct circuits in which an entry guard is in the same family as the exit node, which might compromise the anonymity of traffic sources and destinations by exposing traffic to inappropriate remote observers...

5CVSS5.9AI score0.01482EPSS
Exploits0References1
CVE
CVE
added 2007/06/11 10:0 p.m.61 views

CVE-2007-3165

CVE-2007-3165 affects Tor before 0.1.2.14, where an entry guard can be in the same family as the exit node, potentially compromising anonymity by exposing traffic to inappropriate remote observers. The vulnerability is documented across multiple sources (NVD/OSV/Ubuntu/Red Hat/Fedora). The core d...

5CVSS6.4AI score0.01482EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2007/06/11 10:0 p.m.25 views

CVE-2007-3165

Tor before 0.1.2.14 can construct circuits in which an entry guard is in the same family as the exit node, which might compromise the anonymity of traffic sources and destinations by exposing traffic to inappropriate remote observers...

5CVSS3.3AI score0.01482EPSS
Exploits0
myhack58
myhack58
added 2007/03/20 12:0 a.m.11 views

Easily crack open the Lost Password laptop-vulnerability warning-the black bar safety net

For laptops, it is best not easily set a password, because the laptop's boot password is not like a PC that stored in CMOS circuit can through the discharge clear, at the moment a new laptop is the password stored on the motherboard of the few pieces of logic circuits, we personally are unable to...

0.4AI score
Exploits0
myhack58
myhack58
added 2006/12/16 12:0 a.m.36 views

Through the different structure of the firewall to the back door of the place-vulnerability warning-the black bar safety net

This article describes the different configuration of the firewall is placed back door. Anyway, this article can tell you in other environments, the hackers is how to hide them into a system. Hackers always want to retain into their already compromised capacity of the system, even if the target...

7.9AI score
Exploits0
CVE
CVE
added 2006/07/07 12:0 a.m.46 views

CVE-2006-3416

CVE-2006-3416 affects Tor before 0.1.1.20. Affected component is the Tor relay handling logic where an unrecognized relay command kills the circuit, causing network circuits to be disbanded. The note from developers indicates this is a self‑DoS, not a fullstanding vulnerability, but multiple secu...

5CVSS6.5AI score0.02013EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder