Ettercap Security Vulnerabilities and Issues — Ettercap CVE List

Lucene search

EttercapEttercap

4 matches found

CVE•added 2005/06/01 4:0 a.m.•78 views

CVE-2005-1796

Format string vulnerability in the curses_msg function in the Ncurses interface (ec_curses.c) for Ettercap before 0.7.3 allows remote attackers to execute arbitrary code.

7.5CVSS9.6AI score0.07878EPSS

CVE•added 2019/11/12 10:15 p.m.•56 views

CVE-2010-3844

An unchecked sscanf() call in ettercap before 0.7.5 allows an insecure temporary settings file to overflow a static-sized buffer on the stack.

8.8CVSS8.7AI score0.00527EPSS

CVE•added 2003/04/02 5:0 a.m.•40 views

CVE-2002-0276

Buffer overflow in various decoders in Ettercap 0.6.3.1 and earlier, when running on networks with an MTU greater than 2000, allows remote attackers to execute arbitrary code via large packets.

7.5CVSS8.4AI score0.05687EPSS

CVE•added 2021/05/28 1:15 p.m.•39 views

CVE-2010-3843

The GTK version of ettercap uses a global settings file at /tmp/.ettercap_gtk and does not verify ownership of this file. When parsing this file for settings in gtkui_conf_read() (src/interfacesgtk/ec_gtk_conf.c), an unchecked sscanf() call allows a maliciously placed settings file to overflow a st...

7.8CVSS7.7AI score0.00054EPSS