Summary
This host is installed with Tor and is prone to Denial Of Service vulnerability.
Impact
Successful exploitation will allow attackers to cause Denial of Service.
Impact level: Application
Solution
Upgrade to version 0.2.0.35 or later
http://www.torproject.org/download.html.en
Insight
Error exists while parsing certain malformed router descriptors and can be exploited to crash Tor via specially crafted router descriptors.
Affected
Tor version 0.2.x before 0.2.0.35 on Linux.
References
Severity
Classification
-
CVE CVE-2009-2425 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- CUPS IPP Packets Processing Denial of Service Vulnerability
- ClamAV 'cli_pdf()' and 'cli_scanicon()' Denial of Service Vulnerabilities (Win
- FreeType Memory Corruption and Buffer Overflow Vulnerabilities (Windows)
- F-Secure Policy Manager Server fsmsh.dll module DoS
- Asterisk RTP Text Frames Denial Of Service Vulnerability