Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

tor tor 0.1.2.1 vulnerabilities and exploits

(subscribe to this query)
5.8
CVSSv2
CVE-2007-4174
Tor prior to 0.1.2.16, when ControlPort is enabled, does not properly restrict commands to localhost port 9051, which allows remote malicious users to modify the torrc configuration file, compromise anonymity, and have other unspecified impact via HTTP POST data containing comman...
Tor TorTor Tor 0.1.2.8Tor Tor 0.1.2.7Tor Tor 0.1.2.10Tor Tor 0.1.2.9Tor Tor 0.1.2.1Tor Tor 0.1.2.2Tor Tor 0.1.2.14Tor Tor 0.1.2.13Tor Tor 0.1.2.6Tor Tor 0.1.2.5Tor Tor 0.1.2.12Tor Tor 0.1.2.11Tor Tor 0.1.2.4Tor Tor 0.1.2.3
6.8
CVSSv2
CVE-2011-0427
Heap-based buffer overflow in Tor prior to 0.2.1.29 and 0.2.2.x prior to 0.2.2.21-alpha allows remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors.
Tor Tor 0.2.1.10Tor Tor 0.2.1.11Tor Tor 0.2.1.17Tor Tor 0.2.1.18Tor Tor 0.2.1.25Tor Tor 0.2.1.26Tor Tor 0.2.1.7Tor Tor 0.2.1.8Tor Tor 0.2.0.32Tor Tor 0.2.0.33Tor Tor 0.2.0.27Tor Tor 0.2.0.17Tor Tor 0.2.0.19Tor Tor 0.2.1.12Tor Tor 0.2.1.19Tor Tor 0.2.1.2Tor Tor 0.2.1.27Tor Tor 0.2.1.1Tor Tor 0.2.1.15Tor Tor 0.2.1.16Tor Tor 0.2.1.23Tor Tor 0.2.1.24
5
CVSSv2
CVE-2011-0490
Tor prior to 0.2.1.29 and 0.2.2.x prior to 0.2.2.21-alpha makes calls to Libevent within Libevent log handlers, which might allow remote malicious users to cause a denial of service (daemon crash) via vectors that trigger certain log messages.
Tor Tor 0.2.1.12Tor Tor 0.2.1.13Tor Tor 0.2.1.20Tor Tor 0.2.1.21Tor TorTor Tor 0.2.1.3Tor Tor 0.2.0.31Tor Tor 0.2.0.30Tor Tor 0.2.0.25Tor Tor 0.2.0.22Tor Tor 0.2.0.34Tor Tor 0.2.0.15Tor Tor 0.2.0.7Tor Tor 0.2.0.6Tor Tor 0.2.0.3Tor Tor 0.2.0.4Tor Tor 0.1.2.5Tor Tor 0.1.2.6Tor Tor 0.1.2.31Tor Tor 0.1.2.30Tor Tor 0.1.1Tor Tor 0.1.1.25
5
CVSSv2
CVE-2011-0491
The tor_realloc function in Tor prior to 0.2.1.29 and 0.2.2.x prior to 0.2.2.21-alpha does not validate a certain size value during memory allocation, which might allow remote malicious users to cause a denial of service (daemon crash) via unspecified vectors, related to "un...
Tor Tor 0.2.1.12Tor Tor 0.2.1.13Tor Tor 0.2.1.20Tor Tor 0.2.1.21Tor TorTor Tor 0.2.1.3Tor Tor 0.2.0.31Tor Tor 0.2.0.25Tor Tor 0.2.0.22Tor Tor 0.2.0.34Tor Tor 0.2.0.15Tor Tor 0.2.0.8Tor Tor 0.2.0.7Tor Tor 0.2.0.6Tor Tor 0.2.0.3Tor Tor 0.2.0.4Tor Tor 0.2.1.11Tor Tor 0.2.1.19Tor Tor 0.2.1.2Tor Tor 0.2.1.26Tor Tor 0.2.1.27Tor Tor 0.2.1.8
5
CVSSv2
CVE-2011-0492
Tor prior to 0.2.1.29 and 0.2.2.x prior to 0.2.2.21-alpha allows remote malicious users to cause a denial of service (assertion failure and daemon exit) via blobs that trigger a certain file size, as demonstrated by the cached-descriptors.new file.
Tor Tor 0.2.1.1Tor Tor 0.2.1.10Tor Tor 0.2.1.16Tor Tor 0.2.1.17Tor Tor 0.2.1.23Tor Tor 0.2.1.24Tor Tor 0.2.1.6Tor Tor 0.2.1.7Tor Tor 0.2.0.29Tor Tor 0.2.0.32Tor Tor 0.2.0.30Tor Tor 0.2.0.26Tor Tor 0.2.0.20Tor Tor 0.2.0.19Tor Tor 0.2.0.12Tor Tor 0.2.1.11Tor Tor 0.2.1.12Tor Tor 0.2.1.18Tor Tor 0.2.1.19Tor Tor 0.2.1.25Tor Tor 0.2.1.26Tor Tor 0.2.1.8
5
CVSSv2
CVE-2011-0493
Tor prior to 0.2.1.29 and 0.2.2.x prior to 0.2.2.21-alpha might allow remote malicious users to cause a denial of service (assertion failure and daemon exit) via vectors related to malformed router caches and improper handling of integer values.
Tor Tor 0.2.1.14Tor Tor 0.2.1.15Tor Tor 0.2.1.21Tor Tor 0.2.1.22Tor Tor 0.2.1.3Tor Tor 0.2.1.4Tor Tor 0.2.1.5Tor Tor 0.2.0.30Tor Tor 0.2.0.29Tor Tor 0.2.0.22Tor Tor 0.2.0.23Tor Tor 0.2.0.14Tor Tor 0.2.0.21Tor Tor 0.2.0.6Tor Tor 0.2.0.13Tor Tor 0.2.0.4Tor Tor 0.2.0.5Tor Tor 0.1.2.7Tor Tor 0.1.2.8Tor Tor 0.1.2.30Tor Tor 0.1.2.19Tor Tor 0.1.1.25
5
CVSSv2
CVE-2011-0015
Tor prior to 0.2.1.29 and 0.2.2.x prior to 0.2.2.21-alpha does not properly check the amount of compression in zlib-compressed data, which allows remote malicious users to cause a denial of service via a large compression factor.
Tor Tor 0.2.1.11Tor Tor 0.2.1.12Tor Tor 0.2.1.17Tor Tor 0.2.1.19Tor Tor 0.2.1.20Tor Tor 0.2.1.25Tor Tor 0.2.1.27Tor Tor 0.2.1.8Tor Tor 0.2.0.31Tor Tor 0.2.0.32Tor Tor 0.2.0.28Tor Tor 0.2.0.25Tor Tor 0.2.0.27Tor Tor 0.2.0.16Tor Tor 0.2.0.18Tor Tor 0.2.0.8Tor Tor 0.2.0.11Tor Tor 0.2.0.1Tor Tor 0.2.0.3Tor Tor 0.1.2.13Tor Tor 0.1.2.5Tor Tor 0.1.2.11
2.1
CVSSv2
CVE-2011-0016
Tor prior to 0.2.1.29 and 0.2.2.x prior to 0.2.2.21-alpha does not properly manage key data in memory, which might allow local users to obtain sensitive information by leveraging the ability to read memory that was previously used by a different process.
Tor Tor 0.2.1.12Tor Tor 0.2.1.13Tor Tor 0.2.1.14Tor Tor 0.2.1.15Tor TorTor Tor 0.2.1.3Tor Tor 0.2.1.4Tor Tor 0.2.1.5Tor Tor 0.2.0.25Tor Tor 0.2.0.22Tor Tor 0.2.0.23Tor Tor 0.2.0.30Tor Tor 0.2.0.8Tor Tor 0.2.0.7Tor Tor 0.2.0.6Tor Tor 0.2.0.13Tor Tor 0.2.0.12Tor Tor 0.1.2.5Tor Tor 0.1.2.6Tor Tor 0.1.2.7Tor Tor 0.1.2.8Tor Tor 0.1.1
7.6
CVSSv2
CVE-2011-2778
Multiple heap-based buffer overflows in Tor prior to 0.2.2.35 allow remote malicious users to cause a denial of service (memory corruption) or possibly execute arbitrary code by (1) establishing a SOCKS connection to SocksPort or (2) leveraging a SOCKS proxy configuration.
Tor Tor 0.0.6.1Tor Tor 0.0.6.2Tor Tor 0.0.9.1Tor Tor 0.0.9.10Tor Tor 0.0.9.8Tor Tor 0.0.9.9Tor Tor 0.1.0.15Tor Tor 0.1.0.16Tor Tor 0.1.0.6Tor Tor 0.1.0.7Tor Tor 0.1.1.10Tor Tor 0.1.1.11Tor Tor 0.1.1.18Tor Tor 0.1.1.19Tor Tor 0.1.1.26Tor Tor 0.1.1.3Tor Tor 0.1.1.6Tor Tor 0.1.1.7Tor Tor 0.2.1.1.6Tor Tor 0.2.1.1.7Tor Tor 0.2.1.1.24Tor Tor 0.2.1.1.25
5.8
CVSSv2
CVE-2011-2768
Tor prior to 0.2.2.34, when configured as a client or bridge, sends a TLS certificate chain as part of an outgoing OR connection, which allows remote relays to bypass intended anonymity properties by reading this chain and then determining the set of entry guards that the client ...
Tor Tor 0.0.2Tor Tor 0.0.7Tor Tor 0.0.7.1Tor Tor 0.0.9.10Tor Tor 0.0.9.2Tor Tor 0.0.9.3Tor Tor 0.1.0.1Tor Tor 0.1.0.10Tor Tor 0.1.0.17Tor Tor 0.1.0.18Tor Tor 0.1.0.8Tor Tor 0.1.0.9Tor Tor 0.1.1.12Tor Tor 0.1.1.13Tor Tor 0.1.1.2Tor Tor 0.1.1.3Tor Tor 0.1.1.4Tor Tor 0.1.1.7Tor Tor 0.1.1.8Tor Tor 0.2.1.1.27Tor Tor 0.2.1.1.12Tor Tor 0.2.1.1.26
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypassCVE-2024-30051remoteCVE-2024-27954CVE-2023-51483CVE-2023-47782SSRFCVE-2024-24715CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook