{"id":"CVE-2008-5398","details":"Tor before 0.2.0.32 does not properly process the ClientDNSRejectInternalAddresses configuration option in situations where an exit relay issues a policy-based refusal of a stream, which allows remote exit relays to have an unknown impact by mapping an internal IP address to the destination hostname of a refused stream.","modified":"2026-04-10T03:40:24.692845Z","published":"2008-12-09T00:30:00Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/33025"},{"type":"ADVISORY","url":"http://secunia.com/advisories/34583"},{"type":"ADVISORY","url":"http://security.gentoo.org/glsa/glsa-200904-11.xml"},{"type":"ADVISORY","url":"http://www.vupen.com/english/advisories/2008/3366"},{"type":"FIX","url":"http://blog.torproject.org/blog/tor-0.2.0.32-released"},{"type":"FIX","url":"http://www.securityfocus.com/bid/32648"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/47102"}],"schema_version":"1.7.5"}