CVE-2007-4098

Published Jul 30, 2007

Last updated 14 years ago

CVSS info 5.8

Overview

Description: Tor before 0.1.2.15 does not properly distinguish "streamids from different exits," which might allow remote attackers with control over Tor routers to inject cells into arbitrary streams.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 5.8
Impact score: 4.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:tor:tor:0.1.0.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C04309D4-FEA8-47EA-BB9A-8CBD341B475F"
          },
          {
            "criteria": "cpe:2.3:a:tor:tor:0.1.0.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8607F3C9-F185-4B87-8A1B-B9495A4F244D"
          },
          {
            "criteria": "cpe:2.3:a:tor:tor:0.1.0.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "525A0E09-D4CF-42AA-8EB2-47E0E6CBA179"
          },
          {
            "criteria": "cpe:2.3:a:tor:tor:0.1.0.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "667201BB-5FDA-4E51-B865-0AF8507DBCDA"
          },
          {
            "criteria": "cpe:2.3:a:tor:tor:0.1.0.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C1BA7280-1DF3-4A98-AFD2-C67406A32EA2"
          },
          {
            "criteria": "cpe:2.3:a:tor:tor:0.1.0.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4E6BA17-6AE9-45ED-A8C3-F79463F427BE"
          },
          {
            "criteria": "cpe:2.3:a:tor:tor:0.1.1.1_alpha:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "811CE708-CEE6-4B0F-98E5-E138C06EA382"
          },
          {
            "criteria": "cpe:2.3:a:tor:tor:0.1.1.2_alpha:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6860F802-FEC2-449A-A5FC-AFACCA8633CC"
          },
          {
            "criteria": "cpe:2.3:a:tor:tor:0.1.1.3_alpha:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A4CA23F0-7C49-430E-AD20-7C7BDCC1EEC8"
          },
          {
            "criteria": "cpe:2.3:a:tor:tor:0.1.1.4_alpha:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4D9E677-01D2-4800-82AA-F5585475D500"
          },
          {
            "criteria": "cpe:2.3:a:tor:tor:0.1.1.5_alpha:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C589D4F-60B3-450B-860A-9975BB47BBE2"
          },
          {
            "criteria": "cpe:2.3:a:tor:tor:0.1.1.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "342D2B8A-A832-4CAB-9389-93764B0DE241"
          },
          {
            "criteria": "cpe:2.3:a:tor:tor:0.1.1.23:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4F0A70AA-931A-4906-B4AD-D56E90683716"
          },
          {
            "criteria": "cpe:2.3:a:tor:tor:0.1.2.1_alpha-cvs:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "197BFA5D-8C65-4F59-B4A0-B6AB7B11EC07"
          },
          {
            "criteria": "cpe:2.3:a:tor:tor:0.1.2.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EFC7477A-5DDA-42A6-828E-A818CCF208B7"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References