Category: General|Aug 5, 2020 | Author: Admin

Disgruntled Researcher Drops Two Tor (0Days?) Vulnerabilities – Promises More Soon!

Share on

An angry researcher has dropped two Tor vulnerabilities (he calls them 0day) for similar reasons. He also pledges to drop more such bugs in the days to come.

Unpatched Tor Vulnerabilities Dropped Online Security researcher Dr. Neal Krawetz has dropped two unpatched Tor vulnerabilities online.

 

He calls both the bugs 0 day since they aren’t known or fixed. These public disclosures result from his bad experience in the past while disclosing vulnerabilities to The Tor Project.

 

While he has detailed his experience along with some past bugs he reported, in his blog post, here we quickly review the recently disclosed vulnerabilities.

 

The first of the two revolves around blocking users from connecting to the Tor network. As described in his blog post, Tor relies on randomly-generated TLS certificates that bear a distinct pattern. These TLS certificates are small enough to fit in a packet. Hence, a packet scanner can let the organizations track anyone attempting to connect to Tor. As stated,

 

When the packet sniffer sees a TLS server-side certificate, it generates a signature. If the signature matches the pattern for a Tor server, the scanner flags the connection as a Tor connection.

 

The second 0day explained in another blog post, also relates to blocking the Tor network. This one specifically aims at detecting indirect connections to Tor. Tor offers bridges as a workaround for users to evade blocking and connect to the Tor network. Bridges are Tor nodes not known to authorities censoring the Tor network.

 

However, TCP packet sniffing can once again help in blocking these indirect connections. Tor Projects Disagrees To Call The Bugs ‘Zero-day’ While Dr. Krawetz clearly calls both the bugs ‘Zero-day’, The Tor Project disagrees. Briefly, they don’t consider these issues zero-day because the bugs are known and their researchers are working on them. Secondly, they do not agree with the threat severity as they believe the bugs can’t be enforced at scale.

 

They have shared a detailed response to ZDNet regarding Dr. Krawetz’s findings. Whenever security researchers get annoyed because a vendor did not listen to their report, the revenge comes in the form of disclosure of unpatched bugs online. It then depends on whether the bugs should be called zero-day or not.

 

Nonetheless, what remains crucial is to avoid any exploitation by patching the bugs at the earliest. Given the critical nature of Tor, let’s hope that the conflict resolves soon. And that the bugs remain unexploited to not result in a real-time disaster. Let us know your thoughts in the comments.

 

Sponsored Ads:

Comments:


AMD hides Taiwan branding on Ryzen CPU packaging as it preps new chips for China market release

Category: IT|Sep 15, 2024 | Author: Admin

Contabo downtime analysis

Category: IT|Sep 14, 2024 | Author: Admin

Netflix will no longer provide support for iPhones and iPads running iOS 16

Category: IT|Sep 13, 2024 | Author: Admin

Google searches now link to the Internet Archive

Category: General|Sep 12, 2024 | Author: Admin

Apple ordered to pay back its illegal $14.4 billion Irish tax break

Category: Apple|Sep 11, 2024 | Author: Admin

Microsoft to start force-upgrading Windows 22H2 systems next month

Category: Microsoft|Sep 10, 2024 | Author: Admin

Mozilla extends Firefox support on unsupported Windows versions to March 2025

Category: IT|Sep 9, 2024 | Author: Admin

Apache fixes critical OFBiz remote code execution vulnerability

Category: IT|Sep 8, 2024 | Author: Admin

SonicWall SSLVPN access control flaw is now exploited in attacks

Category: IT|Sep 7, 2024 | Author: Admin

Microsoft Office 2024 to disable ActiveX controls by default

Category: Microsoft|Sep 6, 2024 | Author: Admin

LiteSpeed Cache bug exposes 6 million WordPress sites to takeover attacks

Category: IT|Sep 5, 2024 | Author: Admin

Cisco warns of backdoor admin account in Smart Licensing Utility

Category: IT|Sep 4, 2024 | Author: Admin

D-Link says it is not fixing four RCE flaws in DIR-846W routers

Category: IT|Sep 3, 2024 | Author: Admin

The Google Play Store can finally update multiple apps at the same time

Category: Google|Sep 2, 2024 | Author: Admin

Now the iPhone buttons don't work

Category: Apple|Sep 1, 2024 | Author: Admin
more