| Max CVSS | 6.4 | Min CVSS | 5.8 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-4096 | 5.8 |
Buffer overflow in Tor before 0.1.2.15, when using BSD natd support, allows remote attackers to cause a denial of service via unspecified vectors.
|
08-03-2011 - 02:57 | 30-07-2007 - 21:17 | |
| CVE-2007-4099 | 5.8 |
Tor before 0.1.2.15 can select a guard node beyond the first listed never-before-connected-to guard node, which allows remote attackers with control of certain guard nodes to obtain sensitive information and possibly leverage further attacks.
|
08-03-2011 - 02:57 | 30-07-2007 - 21:17 | |
| CVE-2007-4098 | 5.8 |
Tor before 0.1.2.15 does not properly distinguish "streamids from different exits," which might allow remote attackers with control over Tor routers to inject cells into arbitrary streams.
|
08-03-2011 - 02:57 | 30-07-2007 - 21:17 | |
| CVE-2007-4097 | 6.4 |
Tor before 0.1.2.15 sends "destroy cells" containing the reason for tearing down a circuit, which allows remote attackers to obtain sensitive information, contrary to specifications.
|
08-03-2011 - 02:57 | 30-07-2007 - 21:17 |