Home > Vulnerability Database > CVE-2007-3165

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2007-3165

Date: June 11, 2007

Tor before 0.1.2.14 can construct circuits in which an entry guard is in the same family as the exit node, which might compromise the anonymity of traffic sources and destinations by exposing traffic to inappropriate remote observers.

Severity Score

5.3

Related Resources (8)

Url: http://www.vupen.com/english/advisories/2007/1964

Url: http://archives.seul.org/or/announce/May-2007/msg00000.html

Url: http://osvdb.org/35670

Url: https://nvd.nist.gov/vuln/detail/CVE-2007-3165

Url: http://secunia.com/advisories/25415

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2007-3165

Url: http://www.securityfocus.com/bid/24180

Url: https://www.mend.io/vulnerability-database/CVE-2007-3165

Severity Score

5.3

CVSS v3.1

Base Score:	5.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	NONE
Availability (A):	NONE

CVSS v2

Base Score:	5.0
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	NONE
Availability (A):	NONE
Additional information:

Do you need more information?

Contact Us