Security Bypass in Tor

Posted: November 9, 2012 in Vulnerabilities
Tags: , ,

Vulnerability

Security Bypass in Tor

Vulnerability: Security Bypass in Tor

Danger: Low
Number of vulnerabilities: 1
Vector operation: Remote

Impact: Security Bypass
Exploit: PoC code

Affected products: Tor Browser Bundle for Windows 2.x

Affected versions: Tor 2.2.39-5, possibly other versions

Description:

Which can be exploited by malicious people to disclose sensitive data on the target system.

An error status of the operation in a function call memset (), which may be removed by the compiler. This can be exploited to disclose the contents of the buffer to the client Tor

Manufacturer URL: https://www.torproject.org/

Solution: The way to eliminate the vulnerability does not exist at present.

links:
http://www.viva64.com/ru/b/0178/

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s