CVSS: 4.0EPSS: 1%CPEs: 40EXPL: 0CVE-2006-4508
https://notcve.org/view.php?id=CVE-2006-4508
Unspecified vulnerability in (1) Tor 0.1.0.x before 0.1.0.18 and 0.1.1.x before 0.1.1.23, and (2) ScatterChat before 1.0.2, allows remote attackers operating a Tor entry node to route arbitrary Tor traffic through clients or cause a denial of service (flood) via unspecified vectors. Vulnerabilidad no especificada en (1) Tor 0.1.0.x anteriores a 0.1.0.18 y 0.1.1.x anteriores a 0.1.1.23, y (2) ScatterChat anterior a 1.0.2, permite a atacantes remotos operando un "nodo de entrada" en la red Tor encaminar tráfico Tor de su elección a través de clientes o causar una denegación de acceso (inundación) mediante vectores no especificados. • http://archives.seul.org/or/announce/Aug-2006/msg00001.html http://secunia.com/advisories/21708 http://secunia.com/advisories/21725 http://www.scatterchat.com/advisories/2006-02_tech.html http://www.securityfocus.com/bid/19785 https://exchange.xforce.ibmcloud.com/vulnerabilities/28686 •
CVSS: 6.4EPSS: 0%CPEs: 68EXPL: 0CVE-2006-3407
https://notcve.org/view.php?id=CVE-2006-3407
Tor before 0.1.1.20 allows remote attackers to spoof log entries or possibly execute shell code via strings with non-printable characters. Tor versiones anteriores a la 0.1.1.20 permite a atacantes remotos falsificar entradas de log o posiblemente ejecutar código por consola a través de cadenas de caracteres no imprimibles. • http://secunia.com/advisories/20277 http://secunia.com/advisories/20514 http://security.gentoo.org/glsa/glsa-200606-04.xml http://tor.eff.org/cvs/tor/ChangeLog http://www.securityfocus.com/bid/19795 https://exchange.xforce.ibmcloud.com/vulnerabilities/26793 •
CVSS: 5.0EPSS: 4%CPEs: 68EXPL: 0CVE-2006-3408
https://notcve.org/view.php?id=CVE-2006-3408
Unspecified vulnerability in the directory server (dirserver) in Tor before 0.1.1.20 allows remote attackers to cause an unspecified denial of service via unknown vectors. Vulnerabilidad sin especificar en el servidor de directorios (dirserver) en Tor antes de 0.1.1.20 permite a atacantes remotos provocar una denegación de servicio no especificada a través de vectores desconocidos. • http://secunia.com/advisories/20277 http://secunia.com/advisories/20514 http://security.gentoo.org/glsa/glsa-200606-04.xml http://tor.eff.org/cvs/tor/ChangeLog http://www.osvdb.org/25883 http://www.securityfocus.com/bid/18323 https://exchange.xforce.ibmcloud.com/vulnerabilities/26794 •
CVSS: 7.5EPSS: 25%CPEs: 68EXPL: 0CVE-2006-3409
https://notcve.org/view.php?id=CVE-2006-3409
Integer overflow in Tor before 0.1.1.20 allows remote attackers to execute arbitrary code via crafted large inputs, which result in a buffer overflow when elements are added to smartlists. Desbordamiento de entero en Tor versiones anteriores a la 0.1.1.20, permite a atacantes remotos ejecutar código de su elección a través de entradas largas manipuladas, lo cual provoca un desbordamiento de búfer cuando se añaden elementos a las smartlists • http://secunia.com/advisories/20277 http://secunia.com/advisories/20514 http://security.gentoo.org/glsa/glsa-200606-04.xml http://tor.eff.org/cvs/tor/ChangeLog http://www.securityfocus.com/bid/18323 https://exchange.xforce.ibmcloud.com/vulnerabilities/26795 •
CVSS: 5.0EPSS: 1%CPEs: 68EXPL: 0CVE-2006-3410
https://notcve.org/view.php?id=CVE-2006-3410
Tor before 0.1.1.20 creates "internal circuits" primarily consisting of nodes with "useful exit nodes," which allows remote attackers to conduct unspecified statistical attacks. Tor versiones anteriores a 0.1.1.20 crea "circuitos internos" principalmente consistentes en nodos con "nodos de salida útil", lo cual permite a atacantes remotos conducir ataques estadísticamente no especificados. • http://secunia.com/advisories/20277 http://secunia.com/advisories/20514 http://security.gentoo.org/glsa/glsa-200606-04.xml http://tor.eff.org/cvs/tor/ChangeLog http://www.osvdb.org/25882 http://www.securityfocus.com/bid/18323 https://exchange.xforce.ibmcloud.com/vulnerabilities/26798 •