Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3415

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2006-3415
Last Modified 05 Sep 2008 05:07:04
Published 06 Jul 2006 08:05:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-3415

Summary

Tor before 0.1.1.20 uses improper logic to validate the "OR" destination, which allows remote attackers to perform a man-in-the-middle (MITM) attack via unspecified vectors.

Vulnerable Systems

Application

  • Tor 0.0.2

  • Tor 0.0.2 Pre13

  • Tor 0.0.2 Pre14

  • Tor 0.0.2 Pre15

  • Tor 0.0.2 Pre16

  • Tor 0.0.2 Pre17

  • Tor 0.0.2 Pre18

  • Tor 0.0.2 Pre19

  • Tor 0.0.2 Pre20

  • Tor 0.0.2 Pre21

  • Tor 0.0.2 Pre22

  • Tor 0.0.2 Pre23

  • Tor 0.0.2 Pre24

  • Tor 0.0.2 Pre25

  • Tor 0.0.2 Pre26

  • Tor 0.0.2 Pre27

  • Tor 0.0.3

  • Tor 0.0.4

  • Tor 0.0.5

  • Tor 0.0.6

  • Tor 0.0.6.1

  • Tor 0.0.6.2

  • Tor 0.0.7

  • Tor 0.0.7.1

  • Tor 0.0.7.2

  • Tor 0.0.7.3

  • Tor 0.0.8

  • Tor 0.0.8.1

  • Tor 0.0.9

  • Tor 0.0.9.1

  • Tor 0.0.9.10

  • Tor 0.0.9.2

  • Tor 0.0.9.3

  • Tor 0.0.9.4

  • Tor 0.0.9.5

  • Tor 0.0.9.6

  • Tor 0.0.9.7

  • Tor 0.0.9.8

  • Tor 0.0.9.9

  • Tor 0.1.0.1

  • Tor 0.1.0.10

  • Tor 0.1.0.11

  • Tor 0.1.0.12

  • Tor 0.1.0.13

  • Tor 0.1.0.14

  • Tor 0.1.0.15

  • Tor 0.1.0.16

  • Tor 0.1.0.17

  • Tor 0.1.0.18

  • Tor 0.1.0.19

  • Tor 0.1.0.2

  • Tor 0.1.0.3

  • Tor 0.1.0.4

  • Tor 0.1.0.5

  • Tor 0.1.0.6

  • Tor 0.1.0.7

  • Tor 0.1.0.8

  • Tor 0.1.0.9

  • Tor 0.1.1.1 Alpha

  • Tor 0.1.1.10 Alpha

  • Tor 0.1.1.2 Alpha

  • Tor 0.1.1.3 Alpha

  • Tor 0.1.1.4 Alpha

  • Tor 0.1.1.5 Alpha

  • Tor 0.1.1.6 Alpha

  • Tor 0.1.1.7 Alpha

  • Tor 0.1.1.8 Alpha

  • Tor 0.1.1.9 Alpha


References

SECUNIA - 20514

CONFIRM - http://tor.eff.org/cvs/tor/ChangeLog

GENTOO - GLSA-200606-04


Last Updated: 27 May 2016 10:43:00