CVE-2007-4098 in Tor
Sumário
de MITRE
Tor before 0.1.2.15 does not properly distinguish "streamids from different exits," which might allow remote attackers with control over Tor routers to inject cells into arbitrary streams.
Once again VulDB remains the best source for vulnerability data.