Vulnerability CVE-2006-4508


Published: 2006-08-31   Modified: 2012-02-12

Description:
Unspecified vulnerability in (1) Tor 0.1.0.x before 0.1.0.18 and 0.1.1.x before 0.1.1.23, and (2) ScatterChat before 1.0.2, allows remote attackers operating a Tor entry node to route arbitrary Tor traffic through clients or cause a denial of service (flood) via unspecified vectors.

CVSS2 => (AV:N/AC:H/Au:N/C:P/I:N/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
4/10
4.9/10
4.9/10
Exploit range
Attack complexity
Authentication
Remote
High
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
None
Partial
Affected software
TOR -> TOR 
Scatterchat -> Scatterchat 

 References:
http://xforce.iss.net/xforce/xfdb/28686
http://www.securityfocus.com/bid/19785
http://www.scatterchat.com/advisories/2006-02_tech.html
http://secunia.com/advisories/21725
http://secunia.com/advisories/21708
http://archives.seul.org/or/announce/Aug-2006/msg00001.html

Copyright 2024, cxsecurity.com

 

Back to Top