Tor Security Vulnerabilities and Issues — Tor CVE List

Lucene search

TorTor

3 matches found

CVE•added 2010/01/25 7:30 p.m.•61 views

CVE-2010-0384

Tor 0.2.2.x before 0.2.2.7-alpha, when functioning as a directory mirror, does not prevent logging of the client IP address upon detection of erroneous client behavior, which might make it easier for local users to discover the identities of clients in opportunistic circumstances by reading log fil...

2.1CVSS6.1AI score0.00057EPSS

CVE•added 2010/01/25 7:30 p.m.•48 views

CVE-2010-0385

Tor before 0.2.1.22, and 0.2.2.x before 0.2.2.7-alpha, when functioning as a bridge directory authority, allows remote attackers to obtain sensitive information about bridge identities and bridge descriptors via a dbg-stability.txt directory query.

5CVSS6.1AI score0.00435EPSS

CVE•added 2010/01/25 7:30 p.m.•43 views

CVE-2010-0383

Tor before 0.2.1.22, and 0.2.2.x before 0.2.2.7-alpha, uses deprecated identity keys for certain directory authorities, which makes it easier for man-in-the-middle attackers to compromise the anonymity of traffic sources and destinations.

5CVSS6.4AI score0.00464EPSS