Lucene search
MitreCVE-2014-9378HistoryDec 19, 2014 - 3:59 p.m.
CVE-2014-9378
2014-12-1915:59:28
CWE-20
mitre
web.nvd.nist.gov
28
cve-2014-9378
ettercap
remote code execution
denial of service
crash
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.9
Confidence
Low
EPSS
0.113
Percentile
95.2%
Ettercap 0.8.1 does not validate certain return values, which allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted (1) name to the parse_line function in mdns_spoof/mdns_spoof.c or (2) base64 encoded password to the dissector_imap function in dissectors/ec_imap.c.
Affected configurations
Node
ettercap-projectettercapMatch0.8.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ettercap-project | ettercap | 0.8.1 | cpe:2.3:a:ettercap-project:ettercap:0.8.1:*:*:*:*:*:*:* |
Related
ubuntucve
ubuntucve
CVE-2014-9378
2014-12-19 00:00:00
cvelist
cvelist
CVE-2014-9378
2014-12-19 15:00:00
debiancve
debiancve
CVE-2014-9378
2014-12-19 15:59:28
prion
prion
Default credentials
2014-12-19 15:59:00
nvd
nvd
CVE-2014-9378
2014-12-19 15:59:28
zdt
zdt
Ettercap 0.8.0 / 0.8.1 Denial Of Service Exploit
2014-12-21 00:00:00
exploitpack
exploitpack
Ettercap 0.8.0 0.8.1 - Multiple Denial of Service Vulnerabilities
2014-12-19 00:00:00
packetstorm
packetstorm
Ettercap 0.8.0 / 0.8.1 Denial Of Service
2014-12-20 00:00:00
exploitdb
exploitdb
Ettercap 0.8.0 < 0.8.1 - Multiple Denial of Service Vulnerabilities
2014-12-19 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: ettercap-0.8.1-2.fc19
2015-01-03 19:08:05
[SECURITY] Fedora 21 Update: ettercap-0.8.1-2.fc21
2015-01-03 19:11:42
[SECURITY] Fedora 20 Update: ettercap-0.8.2-1.fc20
2015-03-26 21:26:45
nessus
nessus
Fedora 20 : ettercap-0.8.2-1.fc20 (2015-4020)
2015-03-27 00:00:00
GLSA-201505-01 : Ettercap: Multiple vulnerabilities
2015-05-14 00:00:00
Fedora 21 : ettercap-0.8.2-1.fc21 (2015-3984)
2015-03-27 00:00:00
securityvulns
securityvulns
ettercap multiple security vulnerabilities
2014-12-22 00:00:00
"Ettercap 8.0 - 8.1" multiple vulnerabilities
2014-12-22 00:00:00
openvas
openvas
Fedora Update for ettercap FEDORA-2015-4009
2015-07-07 00:00:00
Fedora Update for ettercap FEDORA-2014-17090
2015-01-05 00:00:00
Fedora Update for ettercap FEDORA-2014-17210
2015-01-05 00:00:00
archlinux
archlinux
ettercap: multiple issues
2015-03-17 00:00:00
ettercap-gtk: multiple issues
2015-03-17 00:00:00
gentoo
gentoo
Ettercap: Multiple vulnerabilities
2015-05-13 00:00:00
mageia
mageia
Updated ettercap packages fix security vulnerabilities
2015-01-07 19:32:10
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.9
Confidence
Low
EPSS
0.113
Percentile
95.2%
Related for CVE-2014-9378