CVE-2006-3411

Medium

6.4/10

Summary

TLS handshakes in Tor before 0.1.1.20 generate public-private keys based on TLS context rather than the connection, which makes it easier for remote attackers to conduct brute force attacks on the encryption keys.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: PARTIAL
Availability Impact: NONE

References

Advisory Timeline

Published Jul 07, 2006

CVE-2006-3411

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS