CVE-2007-4174

critical

Description

Tor before 0.1.2.16, when ControlPort is enabled, does not properly restrict commands to localhost port 9051, which allows remote attackers to modify the torrc configuration file, compromise anonymity, and have other unspecified impact via HTTP POST data containing commands without valid authentication, as demonstrated by an HTML form (1) hosted on a web site or (2) injected by a Tor exit node.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/36407

https://exchange.xforce.ibmcloud.com/vulnerabilities/35784

http://www.vupen.com/english/advisories/2007/2768

http://www.securitytracker.com/id?1018510

http://www.securityfocus.com/bid/25188

http://secunia.com/advisories/26301

http://osvdb.org/36271

http://archives.seul.org/or/announce/Sep-2007/msg00000.html

http://archives.seul.org/or/announce/Aug-2007/msg00000.html

Details

Source: Mitre, NVD

Published: 2007-08-07

Updated: 2017-07-29

Risk Information

CVSS v2

Base Score: 5.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical