Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tor tor 0.1.0.18 vulnerabilities and exploits
(subscribe to this query)
516
VMScore
CVE-2007-4098
Tor prior to 0.1.2.15 does not properly distinguish "streamids from different exits," which might allow remote attackers with control over Tor routers to inject cells into arbitrary streams.
Tor Tor 0.1.0.10
Tor Tor 0.1.1.2 Alpha
Tor Tor 0.1.1.20
Tor Tor 0.1.0.11
Tor Tor 0.1.0.12
Tor Tor 0.1.1.23
Tor Tor 0.1.1.3 Alpha
Tor Tor 0.1.0.13
Tor Tor 0.1.0.14
Tor Tor 0.1.1.4 Alpha
Tor Tor 0.1.1.5 Alpha
Tor Tor 0.1.0.18
Tor Tor 0.1.1.1 Alpha
Tor Tor 0.1.2.1 Alpha-cvs
Tor Tor 0.1.2.14
570
VMScore
CVE-2007-4097
Tor prior to 0.1.2.15 sends "destroy cells" containing the reason for tearing down a circuit, which allows remote malicious users to obtain sensitive information, contrary to specifications.
Tor Tor 0.1.1.1 Alpha
Tor Tor 0.1.1.2 Alpha
Tor Tor 0.1.0.10
Tor Tor 0.1.0.11
Tor Tor 0.1.1.20
Tor Tor 0.1.1.23
Tor Tor 0.1.0.12
Tor Tor 0.1.0.13
Tor Tor 0.1.1.3 Alpha
Tor Tor 0.1.1.4 Alpha
Tor Tor 0.1.0.14
Tor Tor 0.1.0.18
Tor Tor 0.1.1.5 Alpha
Tor Tor 0.1.2.1 Alpha-cvs
Tor Tor 0.1.2.14
516
VMScore
CVE-2007-4099
Tor prior to 0.1.2.15 can select a guard node beyond the first listed never-before-connected-to guard node, which allows remote attackers with control of certain guard nodes to obtain sensitive information and possibly leverage further attacks.
Tor Tor 0.1.0.10
Tor Tor 0.1.1.20
Tor Tor 0.1.1.23
Tor Tor 0.1.0.11
Tor Tor 0.1.0.12
Tor Tor 0.1.1.3 Alpha
Tor Tor 0.1.1.4 Alpha
Tor Tor 0.1.0.13
Tor Tor 0.1.0.14
Tor Tor 0.1.0.18
Tor Tor 0.1.1.5 Alpha
Tor Tor 0.1.2.1 Alpha-cvs
Tor Tor 0.1.1.1 Alpha
Tor Tor 0.1.1.2 Alpha
Tor Tor 0.1.2.14
516
VMScore
CVE-2007-4096
Buffer overflow in Tor prior to 0.1.2.15, when using BSD natd support, allows remote malicious users to cause a denial of service via unspecified vectors.
Tor Tor 0.1.0.11
Tor Tor 0.1.0.12
Tor Tor 0.1.1.3 Alpha
Tor Tor 0.1.1.1 Alpha
Tor Tor 0.1.1.2 Alpha
Tor Tor 0.1.2.14
Tor Tor 0.1.0.10
Tor Tor 0.1.1.20
Tor Tor 0.1.1.23
Tor Tor 0.1.1.4 Alpha
Tor Tor 0.1.0.13
Tor Tor 0.1.0.14
Tor Tor 0.1.0.18
Tor Tor 0.1.1.5 Alpha
Tor Tor 0.1.2.1 Alpha-cvs
356
VMScore
CVE-2006-4508
Unspecified vulnerability in (1) Tor 0.1.0.x prior to 0.1.0.18 and 0.1.1.x prior to 0.1.1.23, and (2) ScatterChat prior to 1.0.2, allows remote attackers operating a Tor entry node to route arbitrary Tor traffic through clients or cause a denial of service (flood) via unspecified...
Tor Tor 0.1.1.6
Tor Tor 0.1.1.9
Tor Tor 0.1.0.7
Tor Tor 0.1.1.19
Tor Tor 0.1.0.10
Tor Tor 0.1.0.8
Tor Tor 0.1.0.12
Scatterchat Scatterchat
Tor Tor 0.1.1.17
Tor Tor 0.1.0.5
Tor Tor 0.1.0.2
Tor Tor 0.1.0.1
Tor Tor 0.1.1.2
Tor Tor 0.1.1.8
Tor Tor 0.1.1.5
Tor Tor 0.1.0.13
Tor Tor 0.1.0.3
Tor Tor 0.1.0.14
Tor Tor 0.1.1.12
Tor Tor 0.1.1.16
Tor Tor 0.1.1.18
Tor Tor 0.1.1.15
570
VMScore
CVE-2006-3407
Tor prior to 0.1.1.20 allows remote malicious users to spoof log entries or possibly execute shell code via strings with non-printable characters.
Tor Tor 0.0.2
Tor Tor 0.0.2 Pre19
Tor Tor 0.0.2 Pre20
Tor Tor 0.0.3
Tor Tor 0.0.4
Tor Tor 0.0.7.2
Tor Tor 0.0.7.3
Tor Tor 0.0.9.3
Tor Tor 0.0.9.4
Tor Tor 0.0.9.5
Tor Tor 0.1.0.11
Tor Tor 0.1.0.12
Tor Tor 0.1.0.19
Tor Tor 0.1.0.2
Tor Tor 0.1.1.1 Alpha
Tor Tor 0.1.1.10 Alpha
Tor Tor 0.1.1.8 Alpha
Tor Tor 0.1.1.9 Alpha
Tor Tor 0.0.2 Pre15
Tor Tor 0.0.2 Pre16
Tor Tor 0.0.2 Pre24
Tor Tor 0.0.2 Pre25
668
VMScore
CVE-2006-3409
Integer overflow in Tor prior to 0.1.1.20 allows remote malicious users to execute arbitrary code via crafted large inputs, which result in a buffer overflow when elements are added to smartlists.
Tor Tor 0.0.2 Pre15
Tor Tor 0.0.2 Pre16
Tor Tor 0.0.2 Pre23
Tor Tor 0.0.2 Pre24
Tor Tor 0.0.2 Pre25
Tor Tor 0.0.6.1
Tor Tor 0.0.6.2
Tor Tor 0.0.9
Tor Tor 0.0.9.1
Tor Tor 0.0.9.8
Tor Tor 0.0.9.9
Tor Tor 0.1.0.15
Tor Tor 0.1.0.16
Tor Tor 0.1.0.5
Tor Tor 0.1.0.6
Tor Tor 0.1.1.4 Alpha
Tor Tor 0.1.1.5 Alpha
Tor Tor 0.0.2
Tor Tor 0.0.2 Pre19
Tor Tor 0.0.2 Pre20
Tor Tor 0.0.3
Tor Tor 0.0.4
570
VMScore
CVE-2006-3411
TLS handshakes in Tor prior to 0.1.1.20 generate public-private keys based on TLS context rather than the connection, which makes it easier for remote malicious users to conduct brute force attacks on the encryption keys.
Tor Tor 0.0.2
Tor Tor 0.0.2 Pre13
Tor Tor 0.0.2 Pre14
Tor Tor 0.0.3
Tor Tor 0.0.4
Tor Tor 0.0.5
Tor Tor 0.0.6
Tor Tor 0.0.9.4
Tor Tor 0.0.9.5
Tor Tor 0.0.9.6
Tor Tor 0.0.9.7
Tor Tor 0.1.0.19
Tor Tor 0.1.0.2
Tor Tor 0.1.0.3
Tor Tor 0.1.0.4
Tor Tor 0.1.1.8 Alpha
Tor Tor 0.1.1.9 Alpha
Tor Tor 0.0.2 Pre19
Tor Tor 0.0.2 Pre20
Tor Tor 0.0.2 Pre21
Tor Tor 0.0.2 Pre22
Tor Tor 0.0.2 Pre23
570
VMScore
CVE-2006-3412
Tor prior to 0.1.1.20 does not sufficiently obey certain firewall options, which allows remote malicious users to bypass intended access restrictions for dirservers, direct connections, or proxy servers.
Tor Tor 0.0.2
Tor Tor 0.0.2 Pre26
Tor Tor 0.0.2 Pre27
Tor Tor 0.0.3
Tor Tor 0.0.4
Tor Tor 0.0.9.10
Tor Tor 0.0.9.2
Tor Tor 0.0.9.3
Tor Tor 0.0.9.4
Tor Tor 0.0.9.5
Tor Tor 0.1.0.17
Tor Tor 0.1.0.18
Tor Tor 0.1.0.19
Tor Tor 0.1.0.2
Tor Tor 0.1.1.6 Alpha
Tor Tor 0.1.1.7 Alpha
Tor Tor 0.1.1.8 Alpha
Tor Tor 0.1.1.9 Alpha
Tor Tor 0.0.2 Pre17
Tor Tor 0.0.2 Pre18
Tor Tor 0.0.2 Pre19
Tor Tor 0.0.2 Pre20
445
VMScore
CVE-2006-3413
The privoxy configuration file in Tor prior to 0.1.1.20, when run on Apple OS X, logs all data via the "logfile", which allows malicious users to obtain potentially sensitive information.
Tor Tor 0.0.2 Pre24
Tor Tor 0.0.2 Pre25
Tor Tor 0.0.2 Pre26
Tor Tor 0.0.2 Pre27
Tor Tor 0.0.9
Tor Tor 0.0.9.1
Tor Tor 0.0.9.10
Tor Tor 0.0.9.2
Tor Tor 0.1.0.15
Tor Tor 0.1.0.16
Tor Tor 0.1.0.17
Tor Tor 0.1.0.18
Tor Tor 0.1.1.4 Alpha
Tor Tor 0.1.1.5 Alpha
Tor Tor 0.1.1.6 Alpha
Tor Tor 0.1.1.7 Alpha
Tor Tor 0.0.2 Pre15
Tor Tor 0.0.2 Pre16
Tor Tor 0.0.2 Pre17
Tor Tor 0.0.2 Pre18
Tor Tor 0.0.6.1
Tor Tor 0.0.6.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-26978
CVE-2024-26982
wireless
CVE-2023-6949
CVE-2024-26980
CVE-2024-32766
CVE-2024-26939
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »