CVE-2007-4098
Published Jul 30, 2007
Last updated 14 years ago
Overview
- Description
- Tor before 0.1.2.15 does not properly distinguish "streamids from different exits," which might allow remote attackers with control over Tor routers to inject cells into arbitrary streams.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5.8
- Impact score
- 4.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:tor:tor:0.1.0.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C04309D4-FEA8-47EA-BB9A-8CBD341B475F"
},
{
"criteria": "cpe:2.3:a:tor:tor:0.1.0.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8607F3C9-F185-4B87-8A1B-B9495A4F244D"
},
{
"criteria": "cpe:2.3:a:tor:tor:0.1.0.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "525A0E09-D4CF-42AA-8EB2-47E0E6CBA179"
},
{
"criteria": "cpe:2.3:a:tor:tor:0.1.0.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "667201BB-5FDA-4E51-B865-0AF8507DBCDA"
},
{
"criteria": "cpe:2.3:a:tor:tor:0.1.0.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C1BA7280-1DF3-4A98-AFD2-C67406A32EA2"
},
{
"criteria": "cpe:2.3:a:tor:tor:0.1.0.18:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D4E6BA17-6AE9-45ED-A8C3-F79463F427BE"
},
{
"criteria": "cpe:2.3:a:tor:tor:0.1.1.1_alpha:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "811CE708-CEE6-4B0F-98E5-E138C06EA382"
},
{
"criteria": "cpe:2.3:a:tor:tor:0.1.1.2_alpha:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6860F802-FEC2-449A-A5FC-AFACCA8633CC"
},
{
"criteria": "cpe:2.3:a:tor:tor:0.1.1.3_alpha:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A4CA23F0-7C49-430E-AD20-7C7BDCC1EEC8"
},
{
"criteria": "cpe:2.3:a:tor:tor:0.1.1.4_alpha:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D4D9E677-01D2-4800-82AA-F5585475D500"
},
{
"criteria": "cpe:2.3:a:tor:tor:0.1.1.5_alpha:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9C589D4F-60B3-450B-860A-9975BB47BBE2"
},
{
"criteria": "cpe:2.3:a:tor:tor:0.1.1.20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "342D2B8A-A832-4CAB-9389-93764B0DE241"
},
{
"criteria": "cpe:2.3:a:tor:tor:0.1.1.23:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4F0A70AA-931A-4906-B4AD-D56E90683716"
},
{
"criteria": "cpe:2.3:a:tor:tor:0.1.2.1_alpha-cvs:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "197BFA5D-8C65-4F59-B4A0-B6AB7B11EC07"
},
{
"criteria": "cpe:2.3:a:tor:tor:0.1.2.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EFC7477A-5DDA-42A6-828E-A818CCF208B7"
}
],
"operator": "OR"
}
]
}
]