Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The compare_tor_addr_to_addr_policy function in or/policies.c in Tor before 0.2.2.39, and 0.2.3.x before 0.2.3.21-rc, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a zero-valued port field that is not properly handled during policy comparison.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Tor ‘compare_tor_addr_to_addr_policy’函数拒绝访问漏洞
Vulnerability Description
Tor(The Onion Router)是第二代洋葱路由(onion routing)的一种实现,主要用于匿名访问互联网。 Tor 0.2.2.39之前版本、2.3.21-rc之前的0.2.3.x版本中的or/policies.c中的‘compare_tor_addr_to_addr_policy’函数中存在漏洞。远程攻击者可利用该漏洞通过未正确处理政策对比过程的0值端口字段,导致拒绝服务(声明失败和守护进程退出)。
CVSS Information
N/A
Vulnerability Type
N/A