7 matches found
Mageia: Security Advisory (MGASA-2018-0161)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Tor Browser < 0.3.2.10 - Use After Free (PoC ) Exploit
Tor Browser versions 0.3.2.x before 0.3.2.10 suffer from a use-after-free vulnerability that can result in a denial of service condition. Exploit Title: Tor Browser - Use After Free PoC Exploit Author: t4rkd3vilz Vendor Homepage: https://www.torproject.org/ Software Link:...
Tor Browser 0.3.2.x Use-After-Free
Exploit Title: Tor Browser - Use After Free Vulnerability Date: 09.07.2018 Exploit Author: t4rkd3vilz Vendor Homepage: https://www.torproject.org/ Software Link: https://www.torproject.org/download/download-easy.html.en Version: Tor 0.3.2.x before 0.3.2.10 Tested on: Kali Linux CVE : CVE-2018-049...
Tor Browser < 0.3.2.10 - Use After Free (PoC)
Exploit Title: Tor Browser - Use After Free PoC Date: 09.07.2018 Exploit Author: t4rkd3vilz Vendor Homepage: https://www.torproject.org/ Software Link: https://www.torproject.org/download/download-easy.html.en Version: Tor 0.3.2.x before 0.3.2.10 Tested on: Kali Linux CVE : CVE-2018-0491 Run...
Updated tor packages fix security vulnerabilities
A protocol-list handling bug that could be used to remotely crash directory authorities with a null-pointer exception CVE-2018-0490. A bug can be remotely triggered in order to crash relays with a use-after-free pattern CVE-2018-0491...
CVE-2018-0491
A use-after-free issue was discovered in Tor 0.3.2.x before 0.3.2.10. It allows remote attackers to cause a denial of service relay crash because the KIST implementation allows a channel to be added more than once in the pending list...
CVE-2018-0491
Tor 0.3.2.x before 0.3.2.10 contains a use-after-free vulnerability (CVE-2018-0491) in the KIST channel handling, where a channel can be added more than once in the pending list. This allows remote attackers to trigger a denial-of-service (relay crash). Upgrade to Tor 0.3.2.10 or later to remedia...