CVE-2006-3411

EPSS 0.26%

Published: 7/7/2006Modified: 4/28/2026

Description

TLS handshakes in Tor before 0.1.1.20 generate public-private keys based on TLS context rather than the connection, which makes it easier for remote attackers to conduct brute force attacks on the encryption keys.

Affected packages (1)

Debian/torfrom 0, < 0.1.1.20-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2006-3411