Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2014-9376
HistoryDec 19, 2014 - 3:59 p.m.

CVE-2014-9376

2014-12-1915:59:27
mitre
web.nvd.nist.gov
32
cve-2014-9376
ettercap 0.8.1
integer underflow
denial of service
code execution
nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.8

Confidence

Low

EPSS

0.059

Percentile

93.5%

JSON

Integer underflow in Ettercap 0.8.1 allows remote attackers to cause a denial of service (out-of-bounds write) and possibly execute arbitrary code via a small (1) size variable value in the dissector_dhcp function in dissectors/ec_dhcp.c, (2) length value to the dissector_gg function in dissectors/ec_gg.c, or (3) string length to the get_decode_len function in ec_utils.c or a request without a (4) username or (5) password to the dissector_TN3270 function in dissectors/ec_TN3270.c.

Affected configurations

Nvd
Node
ettercap-projectettercapMatch0.8.1
VendorProductVersionCPE
ettercap-projectettercap0.8.1cpe:2.3:a:ettercap-project:ettercap:0.8.1:*:*:*:*:*:*:*

Related

ubuntucve 1
cvelist 1
prion 1
nvd 1
debiancve 1
zdt 1
exploitpack 1
packetstorm 1
exploitdb 1
fedora 3
nessus 7
securityvulns 2
openvas 8
gentoo 1
mageia 1
archlinux 2
ubuntucve
ubuntucve
CVE-2014-9376
2014-12-19 00:00:00
cvelist
cvelist
CVE-2014-9376
2014-12-19 15:00:00
prion
prion
Integer overflow
2014-12-19 15:59:00
nvd
nvd
CVE-2014-9376
2014-12-19 15:59:27
debiancve
debiancve
CVE-2014-9376
2014-12-19 15:59:27
zdt
zdt
Ettercap 0.8.0 / 0.8.1 Denial Of Service Exploit
2014-12-21 00:00:00
exploitpack
exploitpack
Ettercap 0.8.0 0.8.1 - Multiple Denial of Service Vulnerabilities
2014-12-19 00:00:00
packetstorm
packetstorm
Ettercap 0.8.0 / 0.8.1 Denial Of Service
2014-12-20 00:00:00
exploitdb
exploitdb
Ettercap 0.8.0 < 0.8.1 - Multiple Denial of Service Vulnerabilities
2014-12-19 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: ettercap-0.8.2-1.fc20
2015-03-26 21:26:45
[SECURITY] Fedora 22 Update: ettercap-0.8.2-1.fc22
2015-03-21 04:53:22
[SECURITY] Fedora 21 Update: ettercap-0.8.2-1.fc21
2015-03-26 21:49:42
nessus
nessus
Fedora 20 : ettercap-0.8.2-1.fc20 (2015-4020)
2015-03-27 00:00:00
GLSA-201505-01 : Ettercap: Multiple vulnerabilities
2015-05-14 00:00:00
Fedora 21 : ettercap-0.8.2-1.fc21 (2015-3984)
2015-03-27 00:00:00
securityvulns
securityvulns
ettercap multiple security vulnerabilities
2014-12-22 00:00:00
"Ettercap 8.0 - 8.1" multiple vulnerabilities
2014-12-22 00:00:00
openvas
openvas
Fedora Update for ettercap FEDORA-2015-4009
2015-07-07 00:00:00
Fedora Update for ettercap FEDORA-2014-17107
2015-01-05 00:00:00
Fedora Update for ettercap FEDORA-2015-4020
2015-03-27 00:00:00
gentoo
gentoo
Ettercap: Multiple vulnerabilities
2015-05-13 00:00:00
mageia
mageia
Updated ettercap packages fix security vulnerabilities
2015-01-07 19:32:10
archlinux
archlinux
ettercap: multiple issues
2015-03-17 00:00:00
ettercap-gtk: multiple issues
2015-03-17 00:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.8

Confidence

Low

EPSS

0.059

Percentile

93.5%

JSON
Related for CVE-2014-9376
ubuntucve1cvelist1prion1nvd1debiancve1zdt1exploitpack1packetstorm1exploitdb1fedora3nessus7securityvulns2openvas8gentoo1mageia1archlinux2