| Max CVSS | 10.0 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2009-0938 | 5.0 |
Unspecified vulnerability in Tor before 0.2.0.34 allows directory mirrors to cause a denial of service (exit node crash) via "malformed input."
|
17-08-2017 - 01:30 | 18-03-2009 - 02:00 | |
| CVE-2008-5398 | 9.3 |
Tor before 0.2.0.32 does not properly process the ClientDNSRejectInternalAddresses configuration option in situations where an exit relay issues a policy-based refusal of a stream, which allows remote exit relays to have an unknown impact by mapping
|
08-08-2017 - 01:33 | 09-12-2008 - 00:30 | |
| CVE-2008-5397 | 7.2 |
Tor before 0.2.0.32 does not properly process the (1) User and (2) Group configuration options, which might allow local users to gain privileges by leveraging unintended supplementary group memberships of the Tor process.
|
08-08-2017 - 01:33 | 09-12-2008 - 00:30 | |
| CVE-2009-0414 | 10.0 |
Unspecified vulnerability in Tor before 0.2.0.33 has unspecified impact and remote attack vectors that trigger heap corruption.
|
08-03-2011 - 03:18 | 03-02-2009 - 23:30 | |
| CVE-2009-0936 | 5.0 |
Unspecified vulnerability in Tor before 0.2.0.34 allows attackers to cause a denial of service (infinite loop) via "corrupt votes."
|
18-04-2009 - 05:47 | 18-03-2009 - 02:00 | |
| CVE-2009-0937 | 5.0 |
Unspecified vulnerability in Tor before 0.2.0.34 allows directory mirrors to cause a denial of service via unknown vectors.
|
18-04-2009 - 05:47 | 18-03-2009 - 02:00 | |
| CVE-2009-0939 | 10.0 |
Tor before 0.2.0.34 treats incomplete IPv4 addresses as valid, which has unknown impact and attack vectors related to "Spec conformance," as demonstrated using 192.168.0.
|
18-04-2009 - 05:47 | 18-03-2009 - 02:00 |