Your submission was sent successfully! Close

CVE-2014-6395

Published: 19 December 2014

Heap-based buffer overflow in the dissector_postgresql function in dissectors/ec_postgresql.c in Ettercap before 0.8.1 allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted password length value that is inconsistent with the actual length of the password.

Priority

Medium

Status

Package Release Status
ettercap
Launchpad, Ubuntu, Debian
artful Not vulnerable
(1:0.8.1-3)
bionic Not vulnerable
(1:0.8.1-3)
cosmic Not vulnerable
(1:0.8.1-3)
disco Not vulnerable
(1:0.8.1-3)
eoan Not vulnerable
(1:0.8.1-3)
lucid Ignored
(reached end-of-life)
precise Does not exist
(precise was needed)
trusty Does not exist
(trusty was needed)
upstream
Released (1:0.8.1-3)
utopic Ignored
(reached end-of-life)
vivid Does not exist

wily Not vulnerable
(1:0.8.1-3)
xenial Not vulnerable
(1:0.8.1-3)
yakkety Not vulnerable
(1:0.8.1-3)
zesty Not vulnerable
(1:0.8.1-3)