CVE-2007-4174
CVE-2007-4174 affects Tor prior to 0.1.2.16, where enabling ControlPort allows remote commands to be sent via HTTP POST without authentication to localhost port 9051, enabling modification of torrc and potential anonymity compromise. Public feeds confirm the issue and reference Fedora advisories ...