CVE-2017-0377 - OpenCVE

Tor 0.3.x before 0.3.0.9 has a guard-selection algorithm that only considers the exit relay (not the exit relay's family), which might allow remote attackers to defeat intended anonymity properties by leveraging the existence of large families.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:L/Au:N/C:P/I:N/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Torproject	Tor

Configuration 1 [-]

OR	cpe:2.3:a:torproject:tor:0.3.0.1:alpha::::::
	cpe:2.3:a:torproject:tor:0.3.0.2:alpha::::::
	cpe:2.3:a:torproject:tor:0.3.0.3:alpha::::::
	cpe:2.3:a:torproject:tor:0.3.0.4:::::::*
	cpe:2.3:a:torproject:tor:0.3.0.5:::::::*
	cpe:2.3:a:torproject:tor:0.3.0.6:::::::*
	cpe:2.3:a:torproject:tor:0.3.0.7:::::::*
	cpe:2.3:a:torproject:tor:0.3.0.8:::::::*

No data.

References

Link	Providers
https://blog.torproject.org/blog/tor-0309-released-security-update-clients
https://blog.torproject.org/blog/tor-0314-alpha-released-security-update-clients
https://github.com/torproject/tor/commit/665baf5ed5c6186d973c46cdea165c0548027350
https://security-tracker.debian.org/CVE-2017-0377
https://trac.torproject.org/projects/tor/ticket/22753

History

No history.

MITRE

Status: PUBLISHED

Assigner: debian

Published: 2017-07-02T15:00:00

Updated: 2024-08-05T13:03:56.989Z

Reserved: 2016-11-29T00:00:00

Link: CVE-2017-0377

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2017-07-02T15:29:00.187

Modified: 2017-07-14T14:21:16.720

Link: CVE-2017-0377

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "Tor", "vendor": "n/a", "versions": [{"status": "affected", "version": "Tor"}]}], "datePublic": "2017-07-02T00:00:00", "descriptions": [{"lang": "en", "value": "Tor 0.3.x before 0.3.0.9 has a guard-selection algorithm that only considers the exit relay (not the exit relay's family), which might allow remote attackers to defeat intended anonymity properties by leveraging the existence of large families."}], "problemTypes": [{"descriptions": [{"description": "privacy bypass", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-02T14:57:01", "orgId": "79363d38-fa19-49d1-9214-5f28da3f3ac5", "shortName": "debian"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://trac.torproject.org/projects/tor/ticket/22753"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://security-tracker.debian.org/CVE-2017-0377"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://blog.torproject.org/blog/tor-0309-released-security-update-clients"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://blog.torproject.org/blog/tor-0314-alpha-released-security-update-clients"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/torproject/tor/commit/665baf5ed5c6186d973c46cdea165c0548027350"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@debian.org", "ID": "CVE-2017-0377", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Tor", "version": {"version_data": [{"version_value": "Tor"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Tor 0.3.x before 0.3.0.9 has a guard-selection algorithm that only considers the exit relay (not the exit relay's family), which might allow remote attackers to defeat intended anonymity properties by leveraging the existence of large families."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "privacy bypass"}]}]}, "references": {"reference_data": [{"name": "https://trac.torproject.org/projects/tor/ticket/22753", "refsource": "CONFIRM", "url": "https://trac.torproject.org/projects/tor/ticket/22753"}, {"name": "https://security-tracker.debian.org/CVE-2017-0377", "refsource": "CONFIRM", "url": "https://security-tracker.debian.org/CVE-2017-0377"}, {"name": "https://blog.torproject.org/blog/tor-0309-released-security-update-clients", "refsource": "CONFIRM", "url": "https://blog.torproject.org/blog/tor-0309-released-security-update-clients"}, {"name": "https://blog.torproject.org/blog/tor-0314-alpha-released-security-update-clients", "refsource": "CONFIRM", "url": "https://blog.torproject.org/blog/tor-0314-alpha-released-security-update-clients"}, {"name": "https://github.com/torproject/tor/commit/665baf5ed5c6186d973c46cdea165c0548027350", "refsource": "CONFIRM", "url": "https://github.com/torproject/tor/commit/665baf5ed5c6186d973c46cdea165c0548027350"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T13:03:56.989Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://trac.torproject.org/projects/tor/ticket/22753"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://security-tracker.debian.org/CVE-2017-0377"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://blog.torproject.org/blog/tor-0309-released-security-update-clients"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://blog.torproject.org/blog/tor-0314-alpha-released-security-update-clients"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/torproject/tor/commit/665baf5ed5c6186d973c46cdea165c0548027350"}]}]}, "cveMetadata": {"assignerOrgId": "79363d38-fa19-49d1-9214-5f28da3f3ac5", "assignerShortName": "debian", "cveId": "CVE-2017-0377", "datePublished": "2017-07-02T15:00:00", "dateReserved": "2016-11-29T00:00:00", "dateUpdated": "2024-08-05T13:03:56.989Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:torproject:tor:0.3.0.1:alpha:*:*:*:*:*:*", "matchCriteriaId": "C7722805-17F9-4215-81B9-E30EE016778B", "vulnerable": true}, {"criteria": "cpe:2.3:a:torproject:tor:0.3.0.2:alpha:*:*:*:*:*:*", "matchCriteriaId": "028D39E2-0968-4B98-A9E4-60B51440175F", "vulnerable": true}, {"criteria": "cpe:2.3:a:torproject:tor:0.3.0.3:alpha:*:*:*:*:*:*", "matchCriteriaId": "8FB26D60-528A-4E06-84A9-8B86143307DA", "vulnerable": true}, {"criteria": "cpe:2.3:a:torproject:tor:0.3.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "D60F7D93-611B-43F8-A3EE-874A34F912A1", "vulnerable": true}, {"criteria": "cpe:2.3:a:torproject:tor:0.3.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "1B332C5B-1762-48BA-BD3E-7DD2CC01F65C", "vulnerable": true}, {"criteria": "cpe:2.3:a:torproject:tor:0.3.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "0B815A38-5CE8-4BF3-AE6F-C11CACDBFA75", "vulnerable": true}, {"criteria": "cpe:2.3:a:torproject:tor:0.3.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "DF6364CA-DBDA-4626-90A9-FF06A0E08619", "vulnerable": true}, {"criteria": "cpe:2.3:a:torproject:tor:0.3.0.8:*:*:*:*:*:*:*", "matchCriteriaId": "2CA71B4E-8EF4-41D4-AE30-F643D2916209", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Tor 0.3.x before 0.3.0.9 has a guard-selection algorithm that only considers the exit relay (not the exit relay's family), which might allow remote attackers to defeat intended anonymity properties by leveraging the existence of large families."}, {"lang": "es", "value": "Las versiones 0.3.x de Tor anteriores a la 0.3.0.9 cuentan con un algoritmo de selecci\u00f3n de restricciones que solo considera el exit relay (no la familia del exit relay), lo que podr\u00eda permitir que atacantes remotos superen las propiedades de anonimato planeadas aprovechando la existencia de grandes familias."}], "id": "CVE-2017-0377", "lastModified": "2017-07-14T14:21:16.720", "metrics": {"cvssMetricV2": [{"acInsufInfo": true, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-07-02T15:29:00.187", "references": [{"source": "security@debian.org", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://blog.torproject.org/blog/tor-0309-released-security-update-clients"}, {"source": "security@debian.org", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://blog.torproject.org/blog/tor-0314-alpha-released-security-update-clients"}, {"source": "security@debian.org", "tags": ["Patch", "Third Party Advisory"], "url": "https://github.com/torproject/tor/commit/665baf5ed5c6186d973c46cdea165c0548027350"}, {"source": "security@debian.org", "tags": ["Third Party Advisory"], "url": "https://security-tracker.debian.org/CVE-2017-0377"}, {"source": "security@debian.org", "tags": ["Issue Tracking", "Vendor Advisory"], "url": "https://trac.torproject.org/projects/tor/ticket/22753"}], "sourceIdentifier": "security@debian.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}