CVE-2021-28089

March 25, 2021

Tor before 0.4.5.7 allows a remote participant in the Tor directory protocol to exhaust CPU resources on a target, aka TROVE-2021-001.

Summary:

Tor before 0.4.5.7 allows a remote participant in the Tor directory protocol to exhaust CPU resources on a target, aka TROVE-2021-001.

Reference Links(if available):

  • https://gitlab.torproject.org/tpo/core/tor/-/issues/40304
  • https://blog.torproject.org/node/2009
  • https://lists.fedoraproject.org/archives/list/[email protected]/message/HPDXB2GZHG3VNOTWSXQ3QZVHNV76WCU5/

  • CVSS Score (if available)

    v2: / MEDIUM

    v3: /

    Links to Exploits(if available)

  • Tags: , , , ,

    You may have missed

    CISA Logo

    CISA: Cisco Releases Security Advisories for Cisco Integrated Management Controller

    April 19, 2024
    alerts

    Cryptographic Vulnerability in PuTTY

    April 19, 2024
    Basta

    Black Basta Ransomware Victim: fluenthome[.]com

    April 19, 2024
    Basta

    Black Basta Ransomware Victim: macphie[.]com

    April 19, 2024
    Basta

    Black Basta Ransomware Victim: columbiapipe[.]com

    April 19, 2024