CVE-2007-4174

Tor before 0.1.2.16, when ControlPort is enabled, does not properly restrict commands to localhost port 9051, which allows remote attackers to modify the torrc configuration file, compromise anonymity, and have other unspecified impact via HTTP POST data containing commands without valid authentication, as demonstrated by an HTML form (1) hosted on a web site or (2) injected by a Tor exit node.

Published: Aug 7, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-4174
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5.8
AV:N/AC:M/Au:N/C:P/I:P/A:N

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
tor / tor	0.1.2.10	0.1.2.10.x
tor / tor	0.1.2.9	0.1.2.9.x
tor / tor	0.1.2.5	0.1.2.5.x
tor / tor	0.1.2.14	0.1.2.14.x
tor / tor	0.1.2.6-alpha	0.1.2.6-alpha.x
tor / tor	0.1.2.1-alpha	0.1.2.1-alpha.x
tor / tor	0.1.2.4	0.1.2.4.x
tor / tor	0.1.2.11	0.1.2.11.x
tor / tor	0.1.2.7-alpha	0.1.2.7-alpha.x
tor / tor	0.1.2.3-alpha	0.1.2.3-alpha.x
tor / tor	0.1.2.2	0.1.2.2.x
tor / tor	0.1.2.8-beta	0.1.2.8-beta.x
tor / tor	0.1.2.13	0.1.2.13.x
tor / tor	-	0.1.2.15.x
tor / tor	0.1.2.12	0.1.2.12.x
tor / tor	0.1.2.5-alpha	0.1.2.5-alpha.x

Vulnerability Database

CVE-2007-4174