Security Bypass in Tor

Posted: November 9, 2012 in Vulnerabilities
Tags: , ,


Security Bypass in Tor

Vulnerability: Security Bypass in Tor

Danger: Low
Number of vulnerabilities: 1
Vector operation: Remote

Impact: Security Bypass
Exploit: PoC code

Affected products: Tor Browser Bundle for Windows 2.x

Affected versions: Tor 2.2.39-5, possibly other versions


Which can be exploited by malicious people to disclose sensitive data on the target system.

An error status of the operation in a function call memset (), which may be removed by the compiler. This can be exploited to disclose the contents of the buffer to the client Tor

Manufacturer URL:

Solution: The way to eliminate the vulnerability does not exist at present.


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s