CVE-2012-3517 — Vulnetix

Try Vulnetix Request Demo

CVE-2012-3517 PUBLISHED

Reported by redhat · Published August 26, 2012

Use-after-free vulnerability in dns.c in Tor before 0.2.2.38 might allow remote attackers to cause a denial of service (daemon crash) via vectors related to failed DNS requests.

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
n/a	n/a	n/a

Timeline

Aug 21, 2012 CVE Published
Aug 21, 2012 PoC Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

GLSA-201301-03 vendor-advisoryx_refsource_GENTOO
x_refsource_CONFIRM
[tor-announce] 20120819 Tor 0.2.2.38 is released mailing-listx_refsource_MLIST
x_refsource_CONFIRM
[oss-security] 20120821 Re: CVE Request -- Tor 0.2.2.38: Three issues mailing-listx_refsource_MLIST
openSUSE-SU-2012:1068 vendor-advisoryx_refsource_SUSE
x_refsource_CONFIRM
FEDORA-2012-14638 vendor-advisoryx_refsource_FEDORA

Open in Interactive Console →