587 matches found
DEBIAN-CVE-2011-4895
Tor before 0.2.2.34, when configured as a bridge, sets up circuits through a process different from the process used by a client, which makes it easier for remote attackers to enumerate bridges by observing circuit building...
CVE-2011-4895
Tor before 0.2.2.34, when configured as a bridge, sets up circuits through a process different from the process used by a client, which makes it easier for remote attackers to enumerate bridges by observing circuit building...
Design/Logic Flaw
Tor before 0.2.2.34, when configured as a bridge, sets up circuits through a process different from the process used by a client, which makes it easier for remote attackers to enumerate bridges by observing circuit building...
CVE-2011-4895
Tor before 0.2.2.34, when configured as a bridge, sets up circuits through a process different from the process used by a client, which makes it easier for remote attackers to enumerate bridges by observing circuit building...
CVE-2011-4895
Tor before 0.2.2.34, when configured as a bridge, builds circuits in a way that differs from client circuits, making it easier for remote attackers to enumerate bridges by observing circuit construction. Affects Tor code path used for bridges; vulnerability achieved through the bridge-circuit set...
Researchers Warn of Prison Hacks, Opening Cell Doors
Remote hackers springing inmates from their jail cells — it sounds like a plot lifted from an old episode of “24” or “Prison Break.” But authorities are concerned by new research that claims such an attack is feasible. Research presented at the Hacker Halted conference in Miami last month by John...
Researchers Warn of Prison Hacks, Opening Cell Doors
In news that seems like it could be lifted from an old 24 or Prison Break plotline, authorities are concerned by new research that claims hackers could remotely open the cell doors of federal prisons. In addition to staging a jailbreak, hackers could sabotage a prison’s intercom system and...
Man-in-the-Middle Remote Attack on Diebold Touch-screen Voting Machine
Man-in-the-Middle Remote Attack on Diebold Touch-screen Voting Machine The Vulnerability Assessment Team VAT at the U.S. Dept. of Energy's Argonne National Laboratory in Illinois has managed to hack a Diebold Accuvote touch-screen voting machine. Voting machines used by as many as a quarter of...
(mod_dav_svn): DoS (excessive memory use) when configured to provide path-based access control
The moddavsvn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x and 1.6.x before 1.6.17, when the SVNPathAuthz shortcircuit option is enabled, allows remote attackers to cause a denial of service infinite loop and memory consumption in opportunistic circumstances by...
(mod_dav_svn): File contents disclosure of files configured to be unreadable by those users
The moddavsvn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x and 1.6.x before 1.6.17, when the SVNPathAuthz shortcircuit option is disabled, does not properly enforce permissions for files that had been publicly readable in the past, which allows remote attackers to...
CVE-2009-5039
Memory leak in the gkcircuitinfodoinacf function in the H.323 implementation in Cisco IOS before 15.01XA allows remote attackers to cause a denial of service memory consumption via a large number of calls over a long duration, as demonstrated by InterZone Clear Token IZCT test traffic, aka Bug ID...
DEBIAN-CVE-2010-3315
authz.c in the moddavsvn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x before 1.5.8 and 1.6.x before 1.6.13, when SVNPathAuthz shortcircuit is enabled, does not properly handle a named repository as a rule scope, which allows remote authenticated users to bypass...
Tor Replay Attack Vulnerability (Windows)
This host is installed with Tor Anonymity Proxy and is prone to replay attack vulnerability. OpenVAS Vulnerability Test $Id: secpodtorreplayattackvulnwin.nasl 5148 2017-01-31 13:16:55Z teissa $ Tor Replay Attack Vulnerability Windows Authors: Sharath S Copyright: Copyright c 2009 SecPod,...
CVE-2007-3165
Tor before 0.1.2.14 can construct circuits in which an entry guard is in the same family as the exit node, which might compromise the anonymity of traffic sources and destinations by exposing traffic to inappropriate remote observers...
CVE-2007-3165
Tor before 0.1.2.14 can construct circuits in which an entry guard is in the same family as the exit node, which might compromise the anonymity of traffic sources and destinations by exposing traffic to inappropriate remote observers...
CVE-2007-3165
CVE-2007-3165 affects Tor before 0.1.2.14, where an entry guard can be in the same family as the exit node, potentially compromising anonymity by exposing traffic to inappropriate remote observers. The vulnerability is documented across multiple sources (NVD/OSV/Ubuntu/Red Hat/Fedora). The core d...
CVE-2007-3165
Tor before 0.1.2.14 can construct circuits in which an entry guard is in the same family as the exit node, which might compromise the anonymity of traffic sources and destinations by exposing traffic to inappropriate remote observers...
Easily crack open the Lost Password laptop-vulnerability warning-the black bar safety net
For laptops, it is best not easily set a password, because the laptop's boot password is not like a PC that stored in CMOS circuit can through the discharge clear, at the moment a new laptop is the password stored on the motherboard of the few pieces of logic circuits, we personally are unable to...
Through the different structure of the firewall to the back door of the place-vulnerability warning-the black bar safety net
This article describes the different configuration of the firewall is placed back door. Anyway, this article can tell you in other environments, the hackers is how to hide them into a system. Hackers always want to retain into their already compromised capacity of the system, even if the target...
CVE-2006-3416
CVE-2006-3416 affects Tor before 0.1.1.20. Affected component is the Tor relay handling logic where an unrecognized relay command kills the circuit, causing network circuits to be disbanded. The note from developers indicates this is a self‑DoS, not a fullstanding vulnerability, but multiple secu...