Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.902103
Category:General
Title:Tor Clients Information Disclosure Vulnerability (Linux)
Summary:This host is installed with Tor and is prone to Information Disclosure; vulnerability.
Description:Summary:
This host is installed with Tor and is prone to Information Disclosure
vulnerability.

Vulnerability Insight:
The issue is due to directory mirror which does not prevent logging of the
client IP address upon detection of erroneous client behavior, which might make
it easier for local users to discover the identities of clients by reading log files.

Vulnerability Impact:
Successful exploitation will allow attackers to obtain client IP information
that can help them launch further attacks.

Affected Software/OS:
Tor version 0.2.2.x before 0.2.2.7-alpha on Linux.

Solution:
Upgrade to version 0.2.2.7-alpha.

CVSS Score:
2.1

CVSS Vector:
AV:L/AC:L/Au:N/C:P/I:N/A:N

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2010-0384
http://archives.seul.org/or/talk/Jan-2010/msg00162.html
CopyrightCopyright (C) 2010 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.