ID
VAR-E-201208-0786
CVE
| cve_id: | CVE-2012-3517 | Trust: 0.3 |
| cve_id: | CVE-2012-3519 | Trust: 0.3 |
| cve_id: | CVE-2012-3518 | Trust: 0.3 |
TITLE
Tor Multiple Security Vulnerabilities
Trust: 0.3
DESCRIPTION
Tor is prone to multiple remote vulnerabilities, including:
1. Multiple denial-of-service vulnerabilities.
2. An information-disclosure vulnerability.
3. An out-of-bounds memory-access vulnerability.
Attackers can exploit theses issues to crash the affected application, cause denial-of service conditions, or retrieve potentially sensitive information.
Trust: 0.3
AFFECTED PRODUCTS
| vendor: | tor | model: | tor | scope: | eq | version: | 0.2.225 | Trust: 0.3 |
| vendor: | tor | model: | tor | scope: | eq | version: | 0.2.224 | Trust: 0.3 |
| vendor: | tor | model: | .21-alpha | scope: | eq | version: | 0.2.2 | Trust: 0.3 |
| vendor: | tor | model: | .20-alpha | scope: | eq | version: | 0.2.2 | Trust: 0.3 |
| vendor: | tor | model: | .19-alpha | scope: | eq | version: | 0.2.2 | Trust: 0.3 |
| vendor: | tor | model: | .18-alpha | scope: | eq | version: | 0.2.2 | Trust: 0.3 |
| vendor: | tor | model: | .17-alpha | scope: | eq | version: | 0.2.2 | Trust: 0.3 |
| vendor: | tor | model: | .16-alpha | scope: | eq | version: | 0.2.2 | Trust: 0.3 |
| vendor: | tor | model: | .15-alpha | scope: | eq | version: | 0.2.2 | Trust: 0.3 |
| vendor: | tor | model: | .14-alpha | scope: | eq | version: | 0.2.2 | Trust: 0.3 |
| vendor: | tor | model: | tor | scope: | eq | version: | 0.2.2 | Trust: 0.3 |
| vendor: | tor | model: | tor | scope: | eq | version: | 0.2.2.37 | Trust: 0.3 |
| vendor: | tor | model: | tor | scope: | eq | version: | 0.2.2.34 | Trust: 0.3 |
| vendor: | mandriva | model: | business server | scope: | eq | version: | 1x8664 | Trust: 0.3 |
| vendor: | mandriva | model: | business server | scope: | eq | version: | 1 | Trust: 0.3 |
| vendor: | tor | model: | tor | scope: | ne | version: | 0.2.2.38 | Trust: 0.3 |
EXPLOIT
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com.
Some of these issues may be trivial to exploit and may not require specific exploit code.
Trust: 0.3
PRICE
Free
Trust: 0.3
TYPE
Unknown
Trust: 0.3
CREDITS
Arma, Asn, and Nickm
Trust: 0.3
EXTERNAL IDS
| db: | NVD | id: | CVE-2012-3517 | Trust: 0.3 |
| db: | NVD | id: | CVE-2012-3519 | Trust: 0.3 |
| db: | NVD | id: | CVE-2012-3518 | Trust: 0.3 |
| db: | BID | id: | 55128 | Trust: 0.3 |
REFERENCES
| url: | http://marc.info/?l=oss-security&m=134555757608675&w=2 | Trust: 0.3 |
| url: | http://www.torproject.org/index.html.en | Trust: 0.3 |
SOURCES
| db: | BID | id: | 55128 |
LAST UPDATE DATE
2022-07-27T09:47:38.323000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 55128 | date: | 2015-04-13T21:39:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 55128 | date: | 2012-08-21T00:00:00 |