[ASA-201709-16] ettercap: multiple issues

🗓️ 18 Sep 2017 00:00:00Reported by ArchLinuxType

archlinux

archlinux🔗 security.archlinux.org👁 15 Views

ettercap multiple security issues, upgrade require

Reporter	Title	Published	Views	Family All 48
0day.today	Ettercap 0.8.2 Etterfilter Out-Of-Bounds Read Vulnerability	6 Mar 201700:00	–	zdt
FreeBSD	ettercap -- out-of-bound read vulnerability	1 Jul 201900:00	–	freebsd
CNVD	Ettercap Buffer Overflow Vulnerability (CNVD-2017-06050)	3 May 201700:00	–	cnvd
CVE	CVE-2017-6430	15 Mar 201715:00	–	cve
CVE	CVE-2017-8366	30 Apr 201719:00	–	cve
Cvelist	CVE-2017-6430	15 Mar 201715:00	–	cvelist
Cvelist	CVE-2017-8366	30 Apr 201719:00	–	cvelist
Debian	[SECURITY] [DSA 3874-1] ettercap security update	9 Jun 201705:50	–	debian
Debian	[SECURITY] [DSA 3874-1] ettercap security update	9 Jun 201705:50	–	debian
Debian CVE	CVE-2017-6430	15 Mar 201715:00	–	debiancve

OS	OS Version	Architecture	Package	Package Version	Filename
Arch Linux	–	any	ettercap	0.8.2-5	ettercap-0.8.2-5-any.pkg.tar.zst

Source	Link
security	www.security.archlinux.org/AVG-212
github	www.github.com/Ettercap/ettercap/issues/782
github	www.github.com/Ettercap/ettercap/commit/7f50c57b2101fe75592c8dc9960883bbd1878bce
github	www.github.com/Ettercap/ettercap/issues/792
github	www.github.com/Ettercap/ettercap/issues/789
github	www.github.com/Ettercap/ettercap/commit/1083d604930ebb9f350126b83802ecd2cbc17f90
security	www.security.archlinux.org/CVE-2017-6430
security	www.security.archlinux.org/CVE-2017-8366

18 Sep 2017 00:00Current

3.1Low risk

Vulners AI Score3.1

CVSS 27.5

CVSS 39.8

EPSS0.00347

ettercap security vulnerability arbitrary code execution denial of service upgrade buffer overflow application crash user tricking