Vulnerability Description
Tor before 0.1.2.16, when ControlPort is enabled, does not properly restrict commands to localhost port 9051, which allows remote attackers to modify the torrc configuration file, compromise anonymity, and have other unspecified impact via HTTP POST data containing commands without valid authentication, as demonstrated by an HTML form (1) hosted on a web site or (2) injected by a Tor exit node.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Tor | Tor | <= 0.1.2.15 |
Related Weaknesses (CWE)
References
- http://archives.seul.org/or/announce/Aug-2007/msg00000.html
- http://archives.seul.org/or/announce/Sep-2007/msg00000.html
- http://osvdb.org/36271
- http://secunia.com/advisories/26301Vendor Advisory
- http://www.securityfocus.com/bid/25188
- http://www.securitytracker.com/id?1018510
- http://www.vupen.com/english/advisories/2007/2768Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35784
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36407
- http://archives.seul.org/or/announce/Aug-2007/msg00000.html
- http://archives.seul.org/or/announce/Sep-2007/msg00000.html
- http://osvdb.org/36271
- http://secunia.com/advisories/26301Vendor Advisory
- http://www.securityfocus.com/bid/25188
- http://www.securitytracker.com/id?1018510
FAQ
What is CVE-2007-4174?
CVE-2007-4174 is a vulnerability with a CVSS score of 5.8 (MEDIUM). Tor before 0.1.2.16, when ControlPort is enabled, does not properly restrict commands to localhost port 9051, which allows remote attackers to modify the torrc configuration file, compromise anonymity...
How severe is CVE-2007-4174?
CVE-2007-4174 has been rated MEDIUM with a CVSS base score of 5.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-4174?
Check the references section above for vendor advisories and patch information. Affected products include: Tor Tor.