Ettercap-Project: Security Vulnerabilities
Heap-based buffer overflow in the dissector_postgresql function in dissectors/ec_postgresql.c in Ettercap before 0.8.1 allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted password length value that is inconsistent with the actual length of the password.
CVSS Score
7.5
EPSS Score
0.215
Published
2014-12-19
Stack-based buffer overflow in the scan_load_hosts function in ec_scan.c in Ettercap 0.7.5.1 and earlier might allow local users to gain privileges via a Trojan horse hosts list containing a long line.
CVSS Score
4.4
EPSS Score
0.002
Published
2013-01-11
Page 2