5

CVE-2009-2426

The connection_edge_process_relay_cell_not_open function in src/or/relay.c in Tor 0.2.x before 0.2.0.35 and 0.1.x before 0.1.2.8-beta allows exit relays to have an unspecified impact by causing controllers to accept DNS responses that redirect to an internal IP address via unknown vectors.  NOTE: some of these details are obtained from third party information.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
TorTor Version0.1.0.1
TorTor Version0.1.0.2
TorTor Version0.1.0.3
TorTor Version0.1.0.4
TorTor Version0.1.0.5
TorTor Version0.1.0.6
TorTor Version0.1.0.7
TorTor Version0.1.0.8
TorTor Version0.1.0.9
TorTor Version0.1.0.10
TorTor Version0.1.0.11
TorTor Version0.1.0.12
TorTor Version0.1.0.13
TorTor Version0.1.0.14
TorTor Version0.1.0.15
TorTor Version0.1.0.16
TorTor Version0.1.0.17
TorTor Version0.1.0.18
TorTor Version0.1.0.19
TorTor Version0.1.1
TorTor Version0.1.1.1
TorTor Version0.1.1.1_alpha
TorTor Version0.1.1.2
TorTor Version0.1.1.2_alpha
TorTor Version0.1.1.3
TorTor Version0.1.1.3_alpha
TorTor Version0.1.1.4
TorTor Version0.1.1.4_alpha
TorTor Version0.1.1.5
TorTor Version0.1.1.5_alpha
TorTor Version0.1.1.6
TorTor Version0.1.1.6_alpha
TorTor Version0.1.1.7
TorTor Version0.1.1.7_alpha
TorTor Version0.1.1.8
TorTor Version0.1.1.8_alpha
TorTor Version0.1.1.9
TorTor Version0.1.1.9_alpha
TorTor Version0.1.1.10
TorTor Version0.1.1.10_alpha
TorTor Version0.1.1.11
TorTor Version0.1.1.12
TorTor Version0.1.1.13
TorTor Version0.1.1.14
TorTor Version0.1.1.15
TorTor Version0.1.1.16
TorTor Version0.1.1.17
TorTor Version0.1.1.18
TorTor Version0.1.1.19
TorTor Version0.1.1.20
TorTor Version0.1.1.21
TorTor Version0.1.1.22
TorTor Version0.1.1.23
TorTor Version0.1.1.25
TorTor Version0.1.1.26
TorTor Version0.1.2.1_alpha-cvs
TorTor Version0.1.2.2
TorTor Version0.1.2.3 Updatealpha
TorTor Version0.1.2.4
TorTor Version0.1.2.5
TorTor Version0.1.2.5 Updatealpha
TorTor Version0.1.2.6 Updatealpha
TorTor Version0.1.2.7 Updatealpha
TorTor Version0.2.0.1 Updatealpha
TorTor Version0.2.0.2 Updatealpha
TorTor Version0.2.0.3 Updatealpha
TorTor Version0.2.0.4 Updatealpha
TorTor Version0.2.0.5 Updatealpha
TorTor Version0.2.0.6 Updatealpha
TorTor Version0.2.0.7 Updatealpha
TorTor Version0.2.0.8 Updatealpha
TorTor Version0.2.0.9 Updatealpha
TorTor Version0.2.0.10 Updatealpha
TorTor Version0.2.0.11 Updatealpha
TorTor Version0.2.0.12 Updatealpha
TorTor Version0.2.0.13 Updatealpha
TorTor Version0.2.0.14 Updatealpha
TorTor Version0.2.0.15 Updatealpha
TorTor Version0.2.0.16 Updatealpha
TorTor Version0.2.0.17 Updatealpha
TorTor Version0.2.0.18 Updatealpha
TorTor Version0.2.0.19 Updatealpha
TorTor Version0.2.0.20 Updatealpha
TorTor Version0.2.0.21 Updatealpha
TorTor Version0.2.0.22 Updatealpha
TorTor Version0.2.0.23 Updatealpha
TorTor Version0.2.0.24 Updatealpha
TorTor Version0.2.0.25 Updatealpha
TorTor Version0.2.0.26 Updatealpha
TorTor Version0.2.0.27 Updatealpha
TorTor Version0.2.0.28 Updatealpha
TorTor Version0.2.0.29 Updatealpha
TorTor Version0.2.0.31 Updatealpha
TorTor Version0.2.0.33
TorTor Version0.2.0.34 Updatealpha
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.92% 0.772
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://archives.seul.org/or/announce/Jun-2009/msg00000.html
Patch
http://secunia.com/advisories/35546
Vendor Advisory
http://www.securityfocus.com/bid/35505
Patch
http://www.vupen.com/english/advisories/2009/1716
Patch
Vendor Advisory
http://www.osvdb.org/55341
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/51377