ID:

CVE-2017-6430 (NVD)

- Vulnerability Info (edit)
2017-03-15

The compile_tree function in ef_compiler.c in the Etterfilter utility in Ettercap 0.8.2 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted filter.

Products Ettercap
Type Out-of-bounds Read (CWE-125)
First patch https://github.com/LocutusOfBorg/ettercap/commit/626dc56686f15f2dda13c48f78c2a666cb6d8506
Patches https://github.com/Ettercap/ettercap/issues/782
Relevant file/s • ./utils/etterfilter/ef_compiler.c (modified, +3, -1)
• ./utils/etterfilter/ef_main.c (modified, +7, -2)
• ./utils/etterfilter/ef_output.c (modified, +3)
Links http://www.securityfocus.com/archive/1/540223/100/0/threaded
http://www.securityfocus.com/bid/96582
http://www.debian.org/security/2017/dsa-3874
http://www.securitytracker.com/id/1038057
Annotation

Note:

This entry has not been annotated yet.

Please consider adding data:

ettercap - Tree: 626dc56686

(? files)

Filter Settings
Files
Navigation
Patch data:

(on by default)


Patched area: