CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-6396

The dissector_postgresql function in dissectors/ec_postgresql.c in Ettercap before 0.8.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted password length, which triggers a 0 character to be written to an arbitrary memory location.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.028

EPSS Ranking 85.5%

CVSS Severity

CVSS v2 Score 7.5

References

Products affected by CVE-2014-6396

Ettercap-Project » Ettercap » Version: 0.6.3.1

cpe:2.3:a:ettercap-project:ettercap:0.6.3.1
Ettercap-Project » Ettercap » Version: 0.7.2

cpe:2.3:a:ettercap-project:ettercap:0.7.2
Ettercap-Project » Ettercap » Version: 0.7.3

cpe:2.3:a:ettercap-project:ettercap:0.7.3
Ettercap-Project » Ettercap » Version: 0.7.4

cpe:2.3:a:ettercap-project:ettercap:0.7.4
Ettercap-Project » Ettercap » Version: 0.7.4.1

cpe:2.3:a:ettercap-project:ettercap:0.7.4.1
Ettercap-Project » Ettercap » Version: 0.7.5

cpe:2.3:a:ettercap-project:ettercap:0.7.5
Ettercap-Project » Ettercap » Version: 0.7.5.1

cpe:2.3:a:ettercap-project:ettercap:0.7.5.1
Ettercap-Project » Ettercap » Version: 0.7.5.2

cpe:2.3:a:ettercap-project:ettercap:0.7.5.2
Ettercap-Project » Ettercap » Version: 0.7.5.3

cpe:2.3:a:ettercap-project:ettercap:0.7.5.3
Ettercap-Project » Ettercap » Version: 0.7.6

cpe:2.3:a:ettercap-project:ettercap:0.7.6
Ettercap-Project » Ettercap » Version: 0.8.0

cpe:2.3:a:ettercap-project:ettercap:0.8.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-6396

Products

Pricing

Contact Us