{"id":"CVE-2010-0383","details":"Tor before 0.2.1.22, and 0.2.2.x before 0.2.2.7-alpha, uses deprecated identity keys for certain directory authorities, which makes it easier for man-in-the-middle attackers to compromise the anonymity of traffic sources and destinations.","modified":"2026-04-10T03:41:07.950459Z","published":"2010-01-25T19:30:01Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/38198"},{"type":"WEB","url":"http://archives.seul.org/or/announce/Jan-2010/msg00000.html"},{"type":"WEB","url":"http://archives.seul.org/or/talk/Jan-2010/msg00161.html"},{"type":"WEB","url":"http://archives.seul.org/or/talk/Jan-2010/msg00162.html"},{"type":"WEB","url":"http://archives.seul.org/or/talk/Jan-2010/msg00165.html"},{"type":"WEB","url":"http://osvdb.org/61977"},{"type":"WEB","url":"http://www.securityfocus.com/bid/37901"}],"schema_version":"1.7.5"}