CVE-2010-0384: Infoleak
First published: Mon Jan 25 2010(Updated: )
Tor 0.2.2.x before 0.2.2.7-alpha, when functioning as a directory mirror, does not prevent logging of the client IP address upon detection of erroneous client behavior, which might make it easier for local users to discover the identities of clients in opportunistic circumstances by reading log files.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tor Tor | =0.2.2.5-alpha | |
| Tor Tor | =0.2.2.5 | |
| Tor Tor | =0.2.2.1-alpha | |
| Tor Tor | =0.2.2.2 | |
| Tor Tor | =0.2.2.6-alpha | |
| Tor Tor | =0.2.2.3 | |
| Tor Tor | =0.2.2.3-alpha | |
| Tor Tor | =0.2.2.2-alpha | |
| Tor Tor | =0.2.2.6 | |
| Tor Tor | =0.2.2.1 | |
| Tor Tor | =0.2.2.4-alpha | |
| Tor Tor | =0.2.2.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/type
- agent/event
- agent/description
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/tor
- canonical/tor tor
- version/tor tor/0.2.2.5-alpha
- version/tor tor/0.2.2.5
- version/tor tor/0.2.2.1-alpha
- version/tor tor/0.2.2.2
- version/tor tor/0.2.2.6-alpha
- version/tor tor/0.2.2.3
- version/tor tor/0.2.2.3-alpha
- version/tor tor/0.2.2.2-alpha
- version/tor tor/0.2.2.6
- version/tor tor/0.2.2.1
- version/tor tor/0.2.2.4-alpha
- version/tor tor/0.2.2.4