CVE-2011-4897

Tor < 0.2.2.25-alpha - Exposure of Sensitive Information via Relay Nickname

Title source: llm
STIX 2.1

Description

Tor before 0.2.2.25-alpha, when configured as a relay without the Nickname configuration option, uses the local hostname as the Nickname value, which allows remote attackers to obtain potentially sensitive information by reading this value.

References (1)

Core 1
Core References
Patch, Vendor Advisory x_refsource_confirm
https://blog.torproject.org/blog/tor-02225-alpha-out

Scores

EPSS 0.0162
EPSS Percentile 73.2%

Details

CWE
CWE-200
Status published
Products (47)
tor/tor 0.0.2
tor/tor 0.0.3
tor/tor 0.0.4
tor/tor 0.0.5
tor/tor 0.0.6
tor/tor 0.0.6.1
tor/tor 0.0.6.2
tor/tor 0.0.7
tor/tor 0.0.7.1
tor/tor 0.0.7.2
... and 37 more
Published Dec 23, 2011
Tracked Since Feb 18, 2026