CVE-2017-8366 log
| Source |
|
| Severity | High |
| Remote | No |
| Type | Arbitrary code execution |
| Description | The strescape function in ec_strings.c in Ettercap 0.8.2 allows attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly execute arbitrary code via a crafted filter that is mishandled by etterfilter. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-212 | ettercap | 0.8.2-4 | 0.8.2-5 | High | Fixed |
| Date | Advisory | Group | Package | Severity | Type |
|---|---|---|---|---|---|
| 18 Sep 2017 | ASA-201709-16 | AVG-212 | ettercap | High | multiple issues |
| References |
|---|
https://github.com/Ettercap/ettercap/issues/792 https://github.com/Ettercap/ettercap/issues/789 https://github.com/Ettercap/ettercap/commit/1083d604930ebb9f350126b83802ecd2cbc17f90 |