CVE-2017-6430

Published: 15 March 2017

The compile_tree function in ef_compiler.c in the Etterfilter utility in Ettercap 0.8.2 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted filter.

Priority

Medium

CVSS 3 base score: 5.5

Status

Package Release Status
ettercap
Launchpad, Ubuntu, Debian
Upstream
Released
Ubuntu 16.04 ESM (Xenial Xerus)
Released (1:0.8.2-2ubuntu1.16.04.1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was released [1:0.8.0-11ubuntu0.3])
Patches:
Other: https://github.com/LocutusOfBorg/ettercap/commit/626dc56686f15f2dda13c48f78c2a666cb6d8506