Lucene search

K
ubuntucveUbuntu.comUB:CVE-2014-9379
HistoryDec 19, 2014 - 12:00 a.m.

CVE-2014-9379

2014-12-1900:00:00
ubuntu.com
ubuntu.com
8

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.079 Low

EPSS

Percentile

94.3%

The radius_get_attribute function in dissectors/ec_radius.c in Ettercap
0.8.1 performs an incorrect cast, which allows remote attackers to cause a
denial of service (crash) or possibly execute arbitrary code via
unspecified vectors, which triggers a stack-based buffer overflow.

Bugs

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.079 Low

EPSS

Percentile

94.3%