Use-after-free vulnerability in dns.c in Tor before 0.2.2.38 might allow remote attackers to cause a denial of service (daemon crash) via vectors related to failed DNS requests.
Max CVSS
5.0
EPSS Score
3.76%
Published
2012-08-26
Updated
2013-08-22
Multiple heap-based buffer overflows in Tor before 0.2.2.35 allow remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code by (1) establishing a SOCKS connection to SocksPort or (2) leveraging a SOCKS proxy configuration.
Max CVSS
7.6
EPSS Score
1.62%
Published
2011-12-23
Updated
2012-01-19
Heap-based buffer overflow in Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors.
Max CVSS
6.8
EPSS Score
4.93%
Published
2011-01-19
Updated
2017-08-17
3 vulnerabilities found