Vulnerability Details CVE-2005-1796
Format string vulnerability in the curses_msg function in the Ncurses interface (ec_curses.c) for Ettercap before 0.7.3 allows remote attackers to execute arbitrary code.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.079
EPSS Ranking 91.6%
CVSS Severity
CVSS v2 Score 7.5
References
- http://ettercap.sourceforge.net/history.php
- http://secunia.com/advisories/15535
- http://secunia.com/advisories/15664
- http://secunia.com/advisories/16000
- http://securitytracker.com/id?1014084
- http://www.debian.org/security/2005/dsa-749
- http://www.gentoo.org/security/en/glsa/glsa-200506-07.xml
- http://www.securityfocus.com/bid/13820
- http://www.vupen.com/english/advisories/2005/0670
- http://ettercap.sourceforge.net/history.php
- http://secunia.com/advisories/15535
- http://secunia.com/advisories/15664
- http://secunia.com/advisories/16000
- http://securitytracker.com/id?1014084
- http://www.debian.org/security/2005/dsa-749
- http://www.gentoo.org/security/en/glsa/glsa-200506-07.xml
- http://www.securityfocus.com/bid/13820
- http://www.vupen.com/english/advisories/2005/0670
Products affected by CVE-2005-1796
-
cpe:2.3:a:ettercap:ettercap:*
-
cpe:2.3:o:debian:debian_linux:3.0
-
cpe:2.3:o:debian:debian_linux:3.1