Lucene search
K

43 matches found

securityvulns
securityvulns
added 2014/08/04 12:0 a.m.40 views

tor user deanonymizing

User deanonimization via Relay-early cells...

5.8CVSS2.5AI score0.02094EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2014/07/30 4:55 p.m.7 views

CVE-2014-5117

Tor before 0.2.4.23 and 0.2.5 before 0.2.5.6-alpha maintains a circuit after an inbound RELAYEARLY cell is received by a client, which makes it easier for remote attackers to conduct traffic-confirmation attacks by using the pattern of RELAY and RELAYEARLY cells as a means of communicating...

6.2AI score
Exploits0References7
OSV
OSV
added 2014/02/03 3:55 a.m.10 views

CVE-2012-2249

Tor before 0.2.3.23-rc allows remote attackers to cause a denial of service assertion failure and daemon exit via a renegotiation attempt that occurs after the initiation of the V3 link protocol...

6.5AI score
Exploits0References1
OSV
OSV
added 2013/01/01 12:35 p.m.7 views

CVE-2012-5573

The connectionedgeprocessrelaycell function in or/relay.c in Tor before 0.2.3.25 maintains circuits even if an unexpected SENDME cell arrives, which might allow remote attackers to cause a denial of service memory consumption or excessive cell reception rate or bypass intended flow-control...

6.4AI score
Exploits0References9
OSV
OSV
added 2012/08/26 3:17 a.m.10 views

CVE-2012-3517

Use-after-free vulnerability in dns.c in Tor before 0.2.2.38 might allow remote attackers to cause a denial of service daemon crash via vectors related to failed DNS requests...

6.3AI score
Exploits0References8
OSV
OSV
added 2012/08/26 3:17 a.m.8 views

CVE-2012-3519

routerlist.c in Tor before 0.2.2.38 uses a different amount of time for relay-list iteration depending on which relay is chosen, which might allow remote attackers to obtain sensitive information about relay selection via a timing side-channel attack...

5.9AI score
Exploits0References8
OSV
OSV
added 2011/12/23 3:59 a.m.7 views

CVE-2011-4896

Tor before 0.2.2.24-alpha continues to use a reachable bridge that was previously configured but is not currently configured, which might allow remote attackers to obtain sensitive information about clients in opportunistic circumstances by monitoring network traffic to the bridge port...

6.3AI score
Exploits0References1
OSV
OSV
added 2011/12/23 3:59 a.m.6 views

CVE-2011-4894

Tor before 0.2.2.34, when configured as a bridge, uses direct DirPort access instead of a Tor TLS connection for a directory fetch, which makes it easier for remote attackers to enumerate bridges by observing DirPort connections...

6.8AI score
Exploits0References2
OSV
OSV
added 2011/12/23 3:59 a.m.8 views

CVE-2011-2768

Tor before 0.2.2.34, when configured as a client or bridge, sends a TLS certificate chain as part of an outgoing OR connection, which allows remote relays to bypass intended anonymity properties by reading this chain and then determining the set of entry guards that the client or bridge had...

6.5AI score
Exploits0References3
OSV
OSV
added 2011/01/19 12:0 p.m.7 views

CVE-2011-0491

The torrealloc function in Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha does not validate a certain size value during memory allocation, which might allow remote attackers to cause a denial of service daemon crash via unspecified vectors, related to "underflow errors."...

6.5AI score
Exploits0References7
OSV
OSV
added 2009/07/10 5:30 p.m.4 views

CVE-2009-2425

Tor before 0.2.0.35 allows remote attackers to cause a denial of service application crash via a malformed router descriptor...

6.4AI score
Exploits0References7
OSV
OSV
added 2009/03/18 2:0 a.m.5 views

CVE-2009-0939

Tor before 0.2.0.34 treats incomplete IPv4 addresses as valid, which has unknown impact and attack vectors related to "Spec conformance," as demonstrated using 192.168.0...

6.3AI score
Exploits0References5
OSV
OSV
added 2009/03/18 2:0 a.m.7 views

CVE-2009-0937

Unspecified vulnerability in Tor before 0.2.0.34 allows directory mirrors to cause a denial of service via unknown vectors...

6.1AI score
Exploits0References5
OSV
OSV
added 2007/08/07 10:17 a.m.5 views

DEBIAN-CVE-2007-4174

Tor before 0.1.2.16, when ControlPort is enabled, does not properly restrict commands to localhost port 9051, which allows remote attackers to modify the torrc configuration file, compromise anonymity, and have other unspecified impact via HTTP POST data containing commands without valid...

5.8CVSS7.2AI score0.0621EPSS
Exploits0References1
OSV
OSV
added 2007/07/30 9:17 p.m.6 views

CVE-2007-4098

Tor before 0.1.2.15 does not properly distinguish "streamids from different exits," which might allow remote attackers with control over Tor routers to inject cells into arbitrary streams...

6.7AI score
Exploits0References6
OSV
OSV
added 2007/07/30 9:17 p.m.11 views

CVE-2007-4099

Tor before 0.1.2.15 can select a guard node beyond the first listed never-before-connected-to guard node, which allows remote attackers with control of certain guard nodes to obtain sensitive information and possibly leverage further attacks...

6.5AI score
Exploits0References6
OSV
OSV
added 2006/07/07 12:5 a.m.14 views

CVE-2006-3412

Tor before 0.1.1.20 does not sufficiently obey certain firewall options, which allows remote attackers to bypass intended access restrictions for dirservers, direct connections, or proxy servers...

6.7AI score
Exploits0References6
OSV
OSV
added 2006/07/07 12:5 a.m.5 views

CVE-2006-3415

Tor before 0.1.1.20 uses improper logic to validate the "OR" destination, which allows remote attackers to perform a man-in-the-middle MITM attack via unspecified vectors...

6.5AI score
Exploits0References5
OSV
OSV
added 2006/07/07 12:5 a.m.8 views

CVE-2006-3418

Tor before 0.1.1.20 does not validate that a server descriptor's fingerprint line matches its identity key, which allows remote attackers to spoof the fingerprint line, which might be trusted by users or other applications...

6.9AI score
Exploits0References5
OSV
OSV
added 2006/07/07 12:5 a.m.8 views

CVE-2006-3414

Tor before 0.1.1.20 supports server descriptors that contain hostnames instead of IP addresses, which allows remote attackers to arbitrarily group users by providing preferential address resolution...

6.6AI score
Exploits0References5
Rows per page
Query Builder