CVE-2007-3165

critical

Description

Tor before 0.1.2.14 can construct circuits in which an entry guard is in the same family as the exit node, which might compromise the anonymity of traffic sources and destinations by exposing traffic to inappropriate remote observers.

References

http://www.vupen.com/english/advisories/2007/1964

http://www.securityfocus.com/bid/24180

http://secunia.com/advisories/25415

http://osvdb.org/35670

http://archives.seul.org/or/announce/May-2007/msg00000.html

Details

Source: Mitre, NVD

Published: 2007-06-11

Updated: 2011-03-08

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Severity: Critical

Detections

Analytics