CVSS: 7.5EPSS: 0%CPEs: 33EXPL: 1CVE-2009-0654
https://notcve.org/view.php?id=CVE-2009-0654
20 Feb 2009 — Tor 0.2.0.28, and probably 0.2.0.34 and earlier, allows remote attackers, with control of an entry router and an exit router, to confirm that a sender and receiver are communicating via vectors involving (1) replaying, (2) modifying, (3) inserting, or (4) deleting a single cell, and then observing cell recognition errors at the exit router. NOTE: the vendor disputes the significance of this issue, noting that the product's design "accepted end-to-end correlation as an attack that is too expensive to solve."... • http://blog.torproject.org/blog/one-cell-enough •
CVSS: 10.0EPSS: 1%CPEs: 160EXPL: 1CVE-2009-0414
https://notcve.org/view.php?id=CVE-2009-0414
03 Feb 2009 — Unspecified vulnerability in Tor before 0.2.0.33 has unspecified impact and remote attack vectors that trigger heap corruption. Vulnerabilidad sin especificar en Tor anterior a v0.2.0.33 tiene un impacto y vectores de ataque desconocidos que lanzan una corrupción de montículo (heap). • http://archives.seul.org/or/announce/Jan-2009/msg00000.html • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 100EXPL: 0CVE-2008-5397
https://notcve.org/view.php?id=CVE-2008-5397
09 Dec 2008 — Tor before 0.2.0.32 does not properly process the (1) User and (2) Group configuration options, which might allow local users to gain privileges by leveraging unintended supplementary group memberships of the Tor process. Tor anterior a v0.2.32 no procesa adecuadamente la configuración de las opciones de (1)usuario (User) y (2) Grupo (group), lo que permitiría a usuarios locales obtener privilegios aprovechando la pertenencia a grupos creados por defecto en los procesos de Tor. • http://blog.torproject.org/blog/tor-0.2.0.32-released • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 0%CPEs: 100EXPL: 0CVE-2008-5398
https://notcve.org/view.php?id=CVE-2008-5398
09 Dec 2008 — Tor before 0.2.0.32 does not properly process the ClientDNSRejectInternalAddresses configuration option in situations where an exit relay issues a policy-based refusal of a stream, which allows remote exit relays to have an unknown impact by mapping an internal IP address to the destination hostname of a refused stream. Tor anterior a v0.2.0.32 no procesa adecuadamente la opción de configuración ClientDNSRejectInternalAddresses en situaciones donde una cuestión en la salida de transmisión de una política qu... • http://blog.torproject.org/blog/tor-0.2.0.32-released • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 16%CPEs: 16EXPL: 2CVE-2007-4174 – Tor 0.1.2.15 - ControlPort Missing Authentication Unauthorized Access
https://notcve.org/view.php?id=CVE-2007-4174
07 Aug 2007 — Tor before 0.1.2.16, when ControlPort is enabled, does not properly restrict commands to localhost port 9051, which allows remote attackers to modify the torrc configuration file, compromise anonymity, and have other unspecified impact via HTTP POST data containing commands without valid authentication, as demonstrated by an HTML form (1) hosted on a web site or (2) injected by a Tor exit node. Tor versiones anteriores a 0.1.2.16, cuando ControlPort está habilitado, no restringe apropiadamente los comandos ... • https://www.exploit-db.com/exploits/30447 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 0%CPEs: 15EXPL: 0CVE-2007-4096
https://notcve.org/view.php?id=CVE-2007-4096
30 Jul 2007 — Buffer overflow in Tor before 0.1.2.15, when using BSD natd support, allows remote attackers to cause a denial of service via unspecified vectors. Desbordamiento de búfer en Tor anterior a 0.1.2.15, cuando está siendo utilizado son soporte BSD natd, permite a atacantes remotos provocar denegación de servicio a través de vectores no especificados. • http://archives.seul.org/or/announce/Jul-2007/msg00000.html •
CVSS: 7.5EPSS: 0%CPEs: 15EXPL: 0CVE-2007-4097
https://notcve.org/view.php?id=CVE-2007-4097
30 Jul 2007 — Tor before 0.1.2.15 sends "destroy cells" containing the reason for tearing down a circuit, which allows remote attackers to obtain sensitive information, contrary to specifications. Tor anterior a 0.1.2.15 envía "destruir celdas" conteniendo la razón para derribar un circuito, lo cual podría permite a un atacante remoto obtener información sensible, contraria a las especificaciones. • http://archives.seul.org/or/announce/Jul-2007/msg00000.html •
CVSS: 9.1EPSS: 0%CPEs: 15EXPL: 0CVE-2007-4098
https://notcve.org/view.php?id=CVE-2007-4098
30 Jul 2007 — Tor before 0.1.2.15 does not properly distinguish "streamids from different exits," which might allow remote attackers with control over Tor routers to inject cells into arbitrary streams. Tor anterior a 0.1.2.15 no distingue de forma adecuada "identificadores de tráfico de diversas salidas," lo cual podría permitir a atacantes remotos con control sobre los routers Tor inyectar celdas dentro de tráfico de su elección. • http://archives.seul.org/or/announce/Jul-2007/msg00000.html •
CVSS: 7.5EPSS: 0%CPEs: 15EXPL: 0CVE-2007-4099
https://notcve.org/view.php?id=CVE-2007-4099
30 Jul 2007 — Tor before 0.1.2.15 can select a guard node beyond the first listed never-before-connected-to guard node, which allows remote attackers with control of certain guard nodes to obtain sensitive information and possibly leverage further attacks. Tor anterior a 0.1.2.15 podría seleccionar un nodo guardía más allá del nodo protector nunca-antes-conectar-a, el cual podría permitir a atacantes remotos con control sobre ciertos nodos guarda obtener información sensible y posiblemente llevar a cabo ataques adicional... • http://archives.seul.org/or/announce/Jul-2007/msg00000.html •
CVSS: 9.1EPSS: 0%CPEs: 24EXPL: 0CVE-2007-3165
https://notcve.org/view.php?id=CVE-2007-3165
11 Jun 2007 — Tor before 0.1.2.14 can construct circuits in which an entry guard is in the same family as the exit node, which might compromise the anonymity of traffic sources and destinations by exposing traffic to inappropriate remote observers. Tor anterior a 0.1.2.14 puede construir circuitos en los cuales un protector de entrada está en la misma familia que el nodo de la salida, lo cual puede comprometer el anonimato de las fuentes y de los destinatarios del tráfico exponiendo tráfico a los observadores remotos ina... • http://archives.seul.org/or/announce/May-2007/msg00000.html •