The cryptographic module in ScatterChat 1.0.x allows attackers to identify patterns in large numbers of messages by identifying collisions using a birthday attack on the custom padding mechanism for ECB mode encryption.
CVSS 2.0
Severity: LOW
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| scatterchat | scatterchat | 1.0.1 |
Unspecified vulnerability in (1) Tor 0.1.0.x before 0.1.0.18 and 0.1.1.x before 0.1.1.23, and (2) ScatterChat before 1.0.2, allows remote attackers operating a Tor entry node to route arbitrary Tor traffic through clients or cause a denial of service (flood) via unspecified vectors.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| tor | tor | 0.1.1.18 |
| tor | tor | 0.1.1.15 |
| tor | tor | 0.1.1.12 |
| tor | tor | 0.1.1.21 |
| tor | tor | 0.1.1.14 |
| tor | tor | 0.1.0.10 |
| scatterchat | scatterchat | * |
| tor | tor | 0.1.0.1 |
| tor | tor | 0.1.1.5 |
| tor | tor | 0.1.1.7 |
| tor | tor | 0.1.1.8 |
| tor | tor | 0.1.1.9 |
| tor | tor | 0.1.0.12 |
| tor | tor | 0.1.1.4 |
| tor | tor | 0.1.1.2 |
| tor | tor | 0.1.1.6 |
| tor | tor | 0.1.0.2 |
| tor | tor | 0.1.0.14 |
| tor | tor | 0.1.0.11 |
| tor | tor | 0.1.1.13 |
| tor | tor | 0.1.0.15 |
| tor | tor | 0.1.1.1 |
| tor | tor | 0.1.1.16 |
| tor | tor | 0.1.0.5 |
| tor | tor | 0.1.0.9 |
| tor | tor | 0.1.1.20 |
| tor | tor | 0.1.0.7 |
| tor | tor | 0.1.1.3 |
| tor | tor | 0.1.0.4 |
| tor | tor | 0.1.0.3 |
| tor | tor | 0.1.0.8 |
| tor | tor | 0.1.0.17 |
| tor | tor | 0.1.1.17 |
| tor | tor | 0.1.1.10 |
| tor | tor | 0.1.1.22 |
| tor | tor | 0.1.0.6 |
| tor | tor | 0.1.1.19 |
| tor | tor | 0.1.0.16 |
| tor | tor | 0.1.1.11 |
| tor | tor | 0.1.0.13 |