Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ettercap-project ettercap 0.8.1 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2014-9378
Ettercap 0.8.1 does not validate certain return values, which allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted (1) name to the parse_line function in mdns_spoof/mdns_spoof.c or (2) base64 encoded password to the d...
Ettercap-project Ettercap 0.8.1
NA
CVE-2014-9380
The dissector_cvs function in dissectors/ec_cvs.c in Ettercap 0.8.1 allows remote malicious users to cause a denial of service (out-of-bounds read) via a packet containing only a CVS_LOGIN signature.
Ettercap-project Ettercap 0.8.1
NA
CVE-2014-9376
Integer underflow in Ettercap 0.8.1 allows remote malicious users to cause a denial of service (out-of-bounds write) and possibly execute arbitrary code via a small (1) size variable value in the dissector_dhcp function in dissectors/ec_dhcp.c, (2) length value to the dissector_g...
Ettercap-project Ettercap 0.8.1
NA
CVE-2014-9377
Heap-based buffer overflow in the nbns_spoof function in plug-ins/nbns_spoof/nbns_spoof.c in Ettercap 0.8.1 allows remote malicious users to cause a denial of service or possibly execute arbitrary code via a large netbios packet.
Ettercap-project Ettercap 0.8.1
NA
CVE-2014-9379
The radius_get_attribute function in dissectors/ec_radius.c in Ettercap 0.8.1 performs an incorrect cast, which allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via unspecified vectors, which triggers a stack-based buffer overf...
Ettercap-project Ettercap 0.8.1
NA
CVE-2014-9381
Integer signedness error in the dissector_cvs function in dissectors/ec_cvs.c in Ettercap 0.8.1 allows remote malicious users to cause a denial of service (crash) via a crafted password, which triggers a large memory allocation.
Ettercap-project Ettercap 0.8.1
NA
CVE-2014-6395
Heap-based buffer overflow in the dissector_postgresql function in dissectors/ec_postgresql.c in Ettercap prior to 0.8.1 allows remote malicious users to cause a denial of service or possibly execute arbitrary code via a crafted password length value that is inconsistent with the...
Ettercap-project Ettercap
NA
CVE-2014-6396
The dissector_postgresql function in dissectors/ec_postgresql.c in Ettercap prior to 0.8.1 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a crafted password length, which triggers a 0 character to be written to an arbitrary memo...
Ettercap-project Ettercap
5.5
CVSSv3
CVE-2017-6430
The compile_tree function in ef_compiler.c in the Etterfilter utility in Ettercap 0.8.2 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted filter.
Ettercap-project Ettercap
9.8
CVSSv3
CVE-2017-8366
The strescape function in ec_strings.c in Ettercap 0.8.2 allows remote malicious users to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted filter that is mishandled by etterfilter.
Ettercap Project Ettercap 0.8.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367CVE-2024-35977CVE-2023-49335man-in-the-middleCVE-2024-4947CVE-2024-31714memory leakSQLCVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook