CVE-2017-6430 - Vulncode-DB

CVE-2017-6430 (NVD)

2017-03-15

The compile_tree function in ef_compiler.c in the Etterfilter utility in Ettercap 0.8.2 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted filter.

Products	Ettercap
Type	Out-of-bounds Read (CWE-125)
First patch	https://github.com/LocutusOfBorg/ettercap/commit/626dc56686f15f2dda13c48f78c2a666cb6d8506
Relevant file/s	• ./utils/etterfilter/ef_compiler.c (modified, +3, -1) • ./utils/etterfilter/ef_main.c (modified, +7, -2) • ./utils/etterfilter/ef_output.c (modified, +3)
Links	• http://www.securityfocus.com/bid/96582 • https://github.com/Ettercap/ettercap/issues/782 • http://www.securitytracker.com/id/1038057 • http://www.debian.org/security/2017/dsa-3874 • http://www.securityfocus.com/archive/1/540223/100/0/threaded

ettercap - Tree: 626dc56686

(? files)

Filter Settings

All Files

Relevant Files

Vulnerable Files

Patched Files

Files

VS-Dark VS-Bright Monokai Darcula

Navigation

Patch data:

(on by default)

Patched area: