CVE-2021-28089

Click the icon to Follow me:- twitterTelegramRedditDiscord

Summary:

Tor before 0.4.5.7 allows a remote participant in the Tor directory protocol to exhaust CPU resources on a target, aka TROVE-2021-001.

Reference Links(if available):

  • https://gitlab.torproject.org/tpo/core/tor/-/issues/40304
  • https://blog.torproject.org/node/2009
  • https://lists.fedoraproject.org/archives/list/[email protected]/message/HPDXB2GZHG3VNOTWSXQ3QZVHNV76WCU5/
  • CVSS Score (if available)

    v2: / MEDIUM

    v3: /

    Links to Exploits(if available)

  • Available for Amazon Prime