Vulnerabilities > Ettercap Project

DATE CVE VULNERABILITY TITLE RISK
2021-05-28 CVE-2010-3843 Out-of-bounds Write vulnerability in Ettercap-Project Ettercap 0.7.3
The GTK version of ettercap uses a global settings file at /tmp/.ettercap_gtk and does not verify ownership of this file.
local
low complexity
ettercap-project CWE-787
7.8
2019-11-12 CVE-2010-3844 Classic Buffer Overflow vulnerability in multiple products
An unchecked sscanf() call in ettercap before 0.7.5 allows an insecure temporary settings file to overflow a static-sized buffer on the stack.
network
low complexity
ettercap-project debian CWE-120
8.8
2017-04-30 CVE-2017-8366 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Ettercap Project Ettercap 0.8.2
The strescape function in ec_strings.c in Ettercap 0.8.2 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted filter that is mishandled by etterfilter.
network
low complexity
ettercap-project CWE-119
critical
9.8
2017-03-15 CVE-2017-6430 Out-of-bounds Read vulnerability in Ettercap-Project Ettercap
The compile_tree function in ef_compiler.c in the Etterfilter utility in Ettercap 0.8.2 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted filter.
local
low complexity
ettercap-project CWE-125
5.5