Summary
This host is installed with Tor and is prone to Denial Of Service vulnerability.
Impact
Successful exploitation will allow attackers to cause Denial of Service.
Impact level: Application
Solution
Upgrade to version 0.2.0.35 or later
http://www.torproject.org/download.html.en
Insight
Error exists while parsing certain malformed router descriptors and can be exploited to crash Tor via specially crafted router descriptors.
Affected
Tor version 0.2.x before 0.2.0.35 on Windows.
References
Severity
Classification
-
CVE CVE-2009-2425 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities