3 matches found
CVE-2006-3418
Tor before 0.1.1.20 does not validate that a server descriptor's fingerprint line matches its identity key, which allows remote attackers to spoof the fingerprint line, which might be trusted by users or other applications...
CVE-2006-3418
Tor before 0.1.1.20 does not validate that a server descriptor's fingerprint line matches its identity key, which allows remote attackers to spoof the fingerprint line, which might be trusted by users or other applications...
CVE-2006-3418
CVE-2006-3418 concerns Tor before 0.1.1.20, where the server descriptor fingerprint line is not validated against its identity key. This allows remote attackers to spoof the fingerprint line, which might be trusted by users or other applications. The connected documents corroborate the same descr...