Lucene search

K
ubuntucveUbuntu.comUB:CVE-2014-9381
HistoryDec 19, 2014 - 12:00 a.m.

CVE-2014-9381

2014-12-1900:00:00
ubuntu.com
ubuntu.com
7

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.007 Low

EPSS

Percentile

81.0%

Integer signedness error in the dissector_cvs function in
dissectors/ec_cvs.c in Ettercap 0.8.1 allows remote attackers to cause a
denial of service (crash) via a crafted password, which triggers a large
memory allocation.

Bugs

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.007 Low

EPSS

Percentile

81.0%