Unrated severityNVD Advisory· Published Jan 25, 2010· Updated Apr 29, 2026

CVE-2010-0384

Description

Tor 0.2.2.x before 0.2.2.7-alpha, when functioning as a directory mirror, does not prevent logging of the client IP address upon detection of erroneous client behavior, which might make it easier for local users to discover the identities of clients in opportunistic circumstances by reading log files.

Affected products

Tor/Tor12 versions
cpe:2.3:a:tor:tor:0.2.2.1:*:*:*:*:*:*:*+ 11 more
- cpe:2.3:a:tor:tor:0.2.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:tor:tor:0.2.2.1:alpha:*:*:*:*:*:*
- cpe:2.3:a:tor:tor:0.2.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:tor:tor:0.2.2.2:alpha:*:*:*:*:*:*
- cpe:2.3:a:tor:tor:0.2.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:tor:tor:0.2.2.3:alpha:*:*:*:*:*:*
- cpe:2.3:a:tor:tor:0.2.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:tor:tor:0.2.2.4:alpha:*:*:*:*:*:*
- cpe:2.3:a:tor:tor:0.2.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:tor:tor:0.2.2.5:alpha:*:*:*:*:*:*
- cpe:2.3:a:tor:tor:0.2.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:tor:tor:0.2.2.6:alpha:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

archives.seul.org/or/talk/Jan-2010/msg00162.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000