CVE-2007-3165

Tor before 0.1.2.14 can construct circuits in which an entry guard is in the same family as the exit node, which might compromise the anonymity of traffic sources and destinations by exposing traffic to inappropriate remote observers.

Published: Jun 12, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-3165
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
tor / tor	0.1.1.1_alpha	0.1.1.1_alpha.x
tor / tor	0.1.2.1_alpha-cvs	0.1.2.1_alpha-cvs.x
tor / tor	0.1.1.23	0.1.1.23.x
tor / tor	0.0.9.8	0.0.9.8.x
tor / tor	0.0.9.10	0.0.9.10.x
tor / tor	0.0.9.2	0.0.9.2.x
tor / tor	0.1.0.10	0.1.0.10.x
tor / tor	0.0.9	0.0.9.x
tor / tor	0.0.9.5	0.0.9.5.x
tor / tor	0.1.0.12	0.1.0.12.x
tor / tor	0.0.9.3	0.0.9.3.x
tor / tor	0.0.9.9	0.0.9.9.x
tor / tor	0.1.1.3_alpha	0.1.1.3_alpha.x
tor / tor	0.1.0.13	0.1.0.13.x
tor / tor	0.1.0.14	0.1.0.14.x
tor / tor	0.0.9.4	0.0.9.4.x
tor / tor	0.1.1.4_alpha	0.1.1.4_alpha.x
tor / tor	0.1.1.2_alpha	0.1.1.2_alpha.x
tor / tor	0.0.9.1	0.0.9.1.x
tor / tor	0.0.9.7	0.0.9.7.x
tor / tor	0.1.1.20	0.1.1.20.x
tor / tor	0.0.9.6	0.0.9.6.x
tor / tor	0.1.1.5_alpha	0.1.1.5_alpha.x
tor / tor	0.1.0.11	0.1.0.11.x

Vulnerability Database

CVE-2007-3165