CVE-2011-4894
EPSS 0.25%發布日:2011/12/23修改日:2026/4/28
描述
Tor before 0.2.2.34, when configured as a bridge, uses direct DirPort access instead of a Tor TLS connection for a directory fetch, which makes it easier for remote attackers to enumerate bridges by observing DirPort connections.
受影響套件(1)
- Debian/torfrom 0, < 0.2.2.34-1