Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.6
CVSSv2

CVE-2011-2778

Published: 23/12/2011 Updated: 19/01/2012
CVSS v2 Base Score: 7.6 | Impact Score: 10 | Exploitability Score: 4.9
VMScore: 676
Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C
Subscribe to Tor

Vulnerability Summary

Multiple heap-based buffer overflows in Tor prior to 0.2.2.35 allow remote malicious users to cause a denial of service (memory corruption) or possibly execute arbitrary code by (1) establishing a SOCKS connection to SocksPort or (2) leveraging a SOCKS proxy configuration.

Vulnerable Product Search on Vulmon Subscribe to Product

tor tor 0.0.6.1

tor tor 0.0.6.2

tor tor 0.0.9.1

tor tor 0.0.9.10

tor tor 0.0.9.8

tor tor 0.0.9.9

tor tor 0.1.0.15

tor tor 0.1.0.16

tor tor 0.1.0.6

tor tor 0.1.0.7

tor tor 0.1.1.10

tor tor 0.1.1.11

tor tor 0.1.1.18

tor tor 0.1.1.19

tor tor 0.1.1.26

tor tor 0.1.1.3

tor tor 0.1.1.6

tor tor 0.1.1.7

tor tor 0.2.1.1.6

tor tor 0.2.1.1.7

tor tor 0.2.1.1.24

tor tor 0.2.1.1.25

tor tor 0.1.2.18

tor tor 0.2.1.1.16

tor tor 0.2.1.1.28

tor tor 0.0.5

tor tor 0.0.6

tor tor 0.0.8

tor tor 0.0.8.1

tor tor 0.0.9

tor tor 0.0.9.6

tor tor 0.0.3

tor tor 0.0.4

tor tor 0.0.7.2

tor tor 0.0.7.3

tor tor 0.0.9.4

tor tor 0.0.9.5

tor tor 0.1.0.11

tor tor 0.1.0.12

tor tor 0.1.0.19

tor tor 0.1.0.2

tor tor 0.1.0.3

tor tor 0.1.1

tor tor 0.1.1.1

tor tor 0.1.1.14

tor tor 0.1.1.15

tor tor 0.1.1.20

tor tor 0.1.1.21

tor tor 0.1.1.22

tor tor 0.1.1.4

tor tor 0.1.1.5

tor tor 0.1.2.1

tor tor 0.2.1.1.8

tor tor 0.2.1.1.10

tor tor 0.1.1.8

tor tor 0.2.1.1.12

tor tor 0.1.2.31

tor tor 0.2.1.1.13

tor tor 0.2.1.1.20

tor tor 0.1.2.17

tor tor 0.2.0.32

tor tor 0.2.1.1.4

tor tor 0.2.1.1.5

tor tor 0.2.0.23

tor tor 0.2.0.29

tor tor 0.2.0.21

tor tor 0.2.0.20

tor tor 0.2.1.12

tor tor 0.2.0.13

tor tor 0.2.1.10

tor tor 0.1.2.13

tor tor 0.1.2.5

tor tor 0.1.2.6

tor tor 0.1.2.4

tor tor 0.1.1.9

tor tor 0.2.2.12

tor tor 0.2.2.4

tor tor 0.2.2.13

tor tor 0.2.2.1

tor tor 0.2.2.2

tor tor 0.2.2.16

tor tor 0.2.1.3

tor tor 0.2.1.4

tor tor 0.2.1.22

tor tor 0.2.1.21

tor tor 0.2.1.15

tor tor 0.2.1.14

tor tor 0.2.2.29

tor tor 0.2.2.33

tor tor 0.0.9.7

tor tor 0.1.0.13

tor tor 0.1.0.14

tor tor 0.1.0.4

tor tor 0.1.0.5

tor tor 0.1.1.16

tor tor 0.1.1.17

tor tor 0.1.1.23

tor tor 0.1.1.25

tor tor 0.2.1.1.9

tor tor 0.2.0.33

tor tor 0.2.1.1.11

tor tor 0.2.1.1.23

tor tor 0.1.2.30

tor tor 0.1.2.19

tor tor 0.2.1.1.19

tor tor 0.2.1.1.18

tor tor 0.2.0.30

tor tor 0.2.1.1.1

tor tor 0.2.1.1.2

tor tor 0.2.1.1.3

tor tor 0.2.0.26

tor tor 0.2.0.27

tor tor 0.2.0.19

tor tor 0.2.0.18

tor tor 0.2.1.11

tor tor 0.2.0.12

tor tor 0.1.2.16

tor tor 0.2.0.1

tor tor 0.2.0.2

tor tor 0.1.2.7

tor tor 0.1.2.8

tor tor 0.2.0.34

tor tor 0.1.2.14

tor tor 0.2.2.5

tor tor 0.2.2.14

tor tor 0.2.2.10

tor tor 0.2.2.15

tor tor 0.2.2.18

tor tor 0.2.1.5

tor tor 0.2.1.6

tor tor 0.2.1.24

tor tor 0.2.1.23

tor tor 0.2.1.17

tor tor 0.2.1.16

tor tor

tor tor 0.2.1.1.17

tor tor 0.2.1.1.21

tor tor 0.2.0.28

tor tor 0.2.0.31

tor tor 0.2.0.24

tor tor 0.2.0.17

tor tor 0.2.0.16

tor tor 0.2.0.9

tor tor 0.2.0.8

tor tor 0.2.0.11

tor tor 0.2.0.10

tor tor 0.2.0.3

tor tor 0.2.0.4

tor tor 0.1.2.9

tor tor 0.1.2.10

tor tor 0.1.2.15

tor tor 0.2.2.6

tor tor 0.2.2.3

tor tor 0.2.2.8

tor tor 0.2.2.20

tor tor 0.2.2.17

tor tor 0.2.1.25

tor tor 0.2.1.26

tor tor 0.2.1.19

tor tor 0.2.1.18

tor tor 0.2.1.13

tor tor 0.2.1.29

tor tor 0.0.2

tor tor 0.0.7

tor tor 0.0.7.1

tor tor 0.0.9.2

tor tor 0.0.9.3

tor tor 0.1.0.1

tor tor 0.1.0.10

tor tor 0.1.0.17

tor tor 0.1.0.18

tor tor 0.1.0.8

tor tor 0.1.0.9

tor tor 0.1.1.12

tor tor 0.1.1.13

tor tor 0.1.1.2

tor tor 0.2.1.1.27

tor tor 0.2.1.1.26

tor tor 0.2.1.1.22

tor tor 0.2.1.1.15

tor tor 0.2.1.1.14

tor tor 0.1.2.2

tor tor 0.2.0.35

tor tor 0.2.0.25

tor tor 0.2.0.22

tor tor 0.2.0.15

tor tor 0.2.0.14

tor tor 0.2.0.7

tor tor 0.2.0.6

tor tor 0.2.1.1

tor tor 0.1.2.12

tor tor 0.2.0.5

tor tor 0.1.2.11

tor tor 0.1.2.3

tor tor 0.2.2.11

tor tor 0.2.2.7

tor tor 0.2.2.9

tor tor 0.2.2.19

tor tor 0.2.1.7

tor tor 0.2.1.8

tor tor 0.2.1.9

tor tor 0.2.1.27

tor tor 0.2.1.28

tor tor 0.2.1.20

tor tor 0.2.1.2

tor tor 0.2.2.32

Vendor Advisories

Debian Security Advisories: DSA-2363-1 tor -- buffer overflow
It was discovered that Tor, an online privacy tool, incorrectly computes buffer sizes in certain cases involving SOCKS connections Malicious parties could use this to cause a heap-based buffer overflow, potentially allowing execution of arbitrary code In Tor's default configuration this issue can only be triggered by clients that can connect to T ...

References

CWE-119https://blog.torproject.org/blog/tor-02235-released-security-patcheshttp://www.debian.org/security/2011/dsa-2363https://nvd.nist.govhttps://www.debian.org/security/./dsa-2363
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypassCVE-2024-30051remoteCVE-2024-27954CVE-2023-51483CVE-2023-47782SSRFCVE-2024-24715CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook