The networkstatus_parse_vote_from_string function in routerparse.c in Tor before 0.2.2.38 does not properly handle an invalid flavor name, which allows remote attackers to cause a denial of service (out-of-bounds read and daemon crash) via a crafted (1) vote document or (2) consensus document.
Max CVSS
5.0
EPSS Score
3.76%
Published
2012-08-26
Updated
2013-08-22
Use-after-free vulnerability in dns.c in Tor before 0.2.2.38 might allow remote attackers to cause a denial of service (daemon crash) via vectors related to failed DNS requests.
Max CVSS
5.0
EPSS Score
3.76%
Published
2012-08-26
Updated
2013-08-22
Multiple heap-based buffer overflows in Tor before 0.2.2.35 allow remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code by (1) establishing a SOCKS connection to SocksPort or (2) leveraging a SOCKS proxy configuration.
Max CVSS
7.6
EPSS Score
1.62%
Published
2011-12-23
Updated
2012-01-19
Buffer overflow in the policy_summarize function in or/policies.c in Tor before 0.2.1.30 allows remote attackers to cause a denial of service (directory authority crash) via a crafted policy that triggers creation of a long port list.
Max CVSS
5.0
EPSS Score
6.32%
Published
2011-06-14
Updated
2011-06-30
Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha might allow remote attackers to cause a denial of service (assertion failure and daemon exit) via vectors related to malformed router caches and improper handling of integer values.
Max CVSS
5.0
EPSS Score
2.18%
Published
2011-01-19
Updated
2017-08-17
Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha allows remote attackers to cause a denial of service (assertion failure and daemon exit) via blobs that trigger a certain file size, as demonstrated by the cached-descriptors.new file.
Max CVSS
5.0
EPSS Score
2.09%
Published
2011-01-19
Updated
2017-08-17
The tor_realloc function in Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha does not validate a certain size value during memory allocation, which might allow remote attackers to cause a denial of service (daemon crash) via unspecified vectors, related to "underflow errors."
Max CVSS
5.0
EPSS Score
2.28%
Published
2011-01-19
Updated
2017-08-17
Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha makes calls to Libevent within Libevent log handlers, which might allow remote attackers to cause a denial of service (daemon crash) via vectors that trigger certain log messages.
Max CVSS
5.0
EPSS Score
2.09%
Published
2011-01-19
Updated
2017-08-17
Heap-based buffer overflow in Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors.
Max CVSS
6.8
EPSS Score
4.93%
Published
2011-01-19
Updated
2017-08-17
Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha does not properly check the amount of compression in zlib-compressed data, which allows remote attackers to cause a denial of service via a large compression factor.
Max CVSS
5.0
EPSS Score
30.59%
Published
2011-01-19
Updated
2011-07-19
Heap-based buffer overflow in Tor before 0.2.1.28 and 0.2.2.x before 0.2.2.20-alpha allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via unspecified vectors.
Max CVSS
10.0
EPSS Score
15.84%
Published
2010-12-22
Updated
2011-01-22
Unspecified vulnerability in Tor before 0.2.0.34 allows directory mirrors to cause a denial of service (exit node crash) via "malformed input."
Max CVSS
5.0
EPSS Score
0.41%
Published
2009-03-18
Updated
2017-08-17
Unspecified vulnerability in Tor before 0.2.0.34 allows directory mirrors to cause a denial of service via unknown vectors.
Max CVSS
5.0
EPSS Score
0.34%
Published
2009-03-18
Updated
2009-04-18
Unspecified vulnerability in Tor before 0.2.0.34 allows attackers to cause a denial of service (infinite loop) via "corrupt votes."
Max CVSS
5.0
EPSS Score
0.34%
Published
2009-03-18
Updated
2009-04-18
Tor before 0.1.1.20 kills the circuit when it receives an unrecognized relay command, which causes network circuits to be disbanded. NOTE: while this item is listed under the "Security fixes" section of the developer changelog, the developer clarified on 20060707 that this is only a self-DoS. Therefore this issue should not be included in CVE
Max CVSS
5.0
EPSS Score
0.12%
Published
2006-07-07
Updated
2024-03-21
Unspecified vulnerability in the directory server (dirserver) in Tor before 0.1.1.20 allows remote attackers to cause an unspecified denial of service via unknown vectors.
Max CVSS
5.0
EPSS Score
4.69%
Published
2006-07-07
Updated
2017-07-20
16 vulnerabilities found