AI Score
Confidence
Low
EPSS
Percentile
5.1%
Tor before 0.2.0.32 does not properly process the (1) User and (2) Group configuration options, which might allow local users to gain privileges by leveraging unintended supplementary group memberships of the Tor process.
blog.torproject.org/blog/tor-0.2.0.32-released
secunia.com/advisories/33025
secunia.com/advisories/34583
security.gentoo.org/glsa/glsa-200904-11.xml
www.securityfocus.com/bid/32648
www.vupen.com/english/advisories/2008/3366
exchange.xforce.ibmcloud.com/vulnerabilities/47101