Lucene search
GoogleOSV:DLA-126-1HistoryDec 29, 2014 - 12:00 a.m.
ettercap - security update
2014-12-2900:00:00
Google
osv.dev
6
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
Patches a bunch of security vulnerabilities:
- CVE-2014-9380 (Buffer over-read)
- CVE-2014-9381 (Signedness error)
See: <https://www.obrela.com/home/security-labs/advisories/osi-advisory-osi-1402/>
Patches taken from upstream
- 6b196e011fa456499ed4650a360961a2f1323818 pull/608
- 31b937298c8067e6b0c3217c95edceb983dfc4a2 pull/609
Thanks to Nick Sampanis who is responsible for
both finding and repairing these issues.
For Debian 6 Squeeze, these issues have been fixed in ettercap version 1:0.7.3-2.1+squeeze2
| CPE | Name | Operator | Version |
|---|---|---|---|
| ettercap | eq | 1:0.7.3-2.1 | |
| ettercap | eq | 1:0.7.3-2.1+squeeze1 |
References
Related
debian
debian
[SECURITY] [DLA 126-1] ettercap security update
2014-12-29 21:30:26
openvas
openvas
Debian: Security Advisory (DLA-126-1)
2023-03-08 00:00:00
Fedora Update for ettercap FEDORA-2015-4009
2015-07-07 00:00:00
Fedora Update for ettercap FEDORA-2014-17090
2015-01-05 00:00:00
nessus
nessus
Debian DLA-126-1 : ettercap security update
2015-03-26 00:00:00
Fedora 22 : ettercap-0.8.2-1.fc22 (2015-4009)
2015-03-23 00:00:00
Fedora 19 : ettercap-0.8.1-2.fc19 (2014-17210)
2015-01-05 00:00:00
prion
prion
Out-of-bounds
2014-12-19 15:59:00
Integer overflow
2014-12-19 15:59:00
cvelist
cvelist
CVE-2014-9380
2014-12-19 15:00:00
CVE-2014-9381
2014-12-19 15:00:00
cve
cve
CVE-2014-9380
2014-12-19 15:59:00
CVE-2014-9381
2014-12-19 15:59:00
debiancve
debiancve
CVE-2014-9380
2014-12-19 15:59:00
CVE-2014-9381
2014-12-19 15:59:00
ubuntucve
ubuntucve
CVE-2014-9380
2014-12-19 00:00:00
CVE-2014-9381
2014-12-19 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: ettercap-0.8.1-2.fc20
2015-01-03 19:07:29
[SECURITY] Fedora 19 Update: ettercap-0.8.1-2.fc19
2015-01-03 19:08:05
[SECURITY] Fedora 21 Update: ettercap-0.8.1-2.fc21
2015-01-03 19:11:42
securityvulns
securityvulns
ettercap multiple security vulnerabilities
2014-12-22 00:00:00
"Ettercap 8.0 - 8.1" multiple vulnerabilities
2014-12-22 00:00:00
gentoo
gentoo
Ettercap: Multiple vulnerabilities
2015-05-13 00:00:00
mageia
mageia
Updated ettercap packages fix security vulnerabilities
2015-01-07 19:32:10
archlinux
archlinux
ettercap: multiple issues
2015-03-17 00:00:00
ettercap-gtk: multiple issues
2015-03-17 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related for OSV:DLA-126-1