Tor Unspecified Remote Memory Corruption Vulnerability (Win) Network Vulnerability

Summary

This host is installed with Tor and is prone to unspecified remote Memory Corruption vulnerability.

Impact

A remote user could execute arbitrary code on the target system and can cause denial-of-service or compromise a vulnerable system. Impact level: Application

Solution

Upgrade to version 0.2.0.33 or later http://www.torproject.org/download.html.en

Insight

Due to unknown impact, remote attackers can trigger heap corruption on the application.

Affected

Tor version prior to 0.2.0.33 on Windows.

References

http://blog.torproject.org/blog/tor-0.2.0.33-stable-released
http://secunia.com/advisories/33635
http://secunia.com/advisories/33677
http://securitytracker.com/alerts/2009/Jan/1021633.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-0414
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Reader 'Plug-in' Buffer Overflow Vulnerability (Linux)
Adobe Acrobat and Reader SING 'uniqueName' Buffer Overflow Vulnerability (Win)
Citrix Provisioning Services SoapServer Buffer Overflow Vulnerability
Asterisk HTTP Manager Buffer Overflow Vulnerability
Adobe Reader 'mailListIsPdf' Buffer Overflow Vulnerability (Linux)

Take action and discover your vulnerabilities