Lucene search
K

8 matches found

ArchLinux
ArchLinux
added 2017/07/11 12:0 a.m.26 views

[ASA-201707-8] tor: session hijacking

Arch Linux Security Advisory ASA-201707-8 ========================================= Severity: Medium Date : 2017-07-11 CVE-ID : CVE-2017-0377 Package : tor Type : session hijacking Remote : Yes Link : https://security.archlinux.org/AVG-336 Summary ======= The package tor before version 0.3.0.9-1 ...

7.5CVSS0.4AI score0.02446EPSS
Exploits0References5
ALT Linux
ALT Linux
added 2017/07/03 12:0 a.m.17 views

Security fix for the ALT Linux 8 package tor version 0.3.0.9-alt1.M80P.1

0.3.0.9-alt1.M80P.1 built July 3, 2017 Anton Farygin in task 184902 June 30, 2017 Vladimir Didenko - new version Fixes: CVE-2017-0377...

5CVSS7.5AI score0.02446EPSS
Exploits0
NVD
NVD
added 2017/07/02 3:29 p.m.28 views

CVE-2017-0377

Tor 0.3.x before 0.3.0.9 has a guard-selection algorithm that only considers the exit relay not the exit relay's family, which might allow remote attackers to defeat intended anonymity properties by leveraging the existence of large families...

7.5CVSS7.5AI score0.02446EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2017/07/02 3:29 p.m.23 views

CVE-2017-0377

Tor 0.3.x before 0.3.0.9 has a guard-selection algorithm that only considers the exit relay not the exit relay's family, which might allow remote attackers to defeat intended anonymity properties by leveraging the existence of large families...

7.5CVSS6.8AI score0.02446EPSS
Exploits0References6
OSV
OSV
added 2017/07/02 3:29 p.m.20 views

CVE-2017-0377

Tor 0.3.x before 0.3.0.9 has a guard-selection algorithm that only considers the exit relay not the exit relay's family, which might allow remote attackers to defeat intended anonymity properties by leveraging the existence of large families...

7.5CVSS6.8AI score0.02446EPSS
Exploits0References5
CVE
CVE
added 2017/07/02 3:0 p.m.61 views

CVE-2017-0377

CVE-2017-0377 affects Tor 0.3.x before 0.3.0.9. The guard-selection algorithm incorrectly considers only the exit relay (not the exit relay’s family), which can allow an attacker to compromise anonymity by exploiting large family structures. The mitigation is upgrading to upstream version 0.3.0.9...

7.5CVSS7.3AI score0.02446EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2017/07/02 3:0 p.m.30 views

CVE-2017-0377

Tor 0.3.x before 0.3.0.9 has a guard-selection algorithm that only considers the exit relay not the exit relay's family, which might allow remote attackers to defeat intended anonymity properties by leveraging the existence of large families...

7.4AI score0.02446EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2017/07/02 3:0 p.m.14 views

CVE-2017-0377

Tor 0.3.x before 0.3.0.9 has a guard-selection algorithm that only considers the exit relay not the exit relay's family, which might allow remote attackers to defeat intended anonymity properties by leveraging the existence of large families...

7.5CVSS7.5AI score0.02446EPSS
Exploits0
Rows per page
Query Builder