PT-2006-4308 · Tor · Tor
Published
2006-07-07
·
Updated
2008-09-05
·
CVE-2006-3417
CVSS v2.0
6.4
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Tor client versions prior to 0.1.1.20
Description
The issue concerns the preference of entry points based on
is fast or is stable flags over nodes identified as more trustworthy "entry guard" (is guard) systems by directory authorities. This could allow remote attackers to be preferred over more trustworthy nodes.Recommendations
For Tor client versions prior to 0.1.1.20, update to version 0.1.1.20 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Tor