Input validation error in Ettercap

#VU40994 Input validation error in Ettercap

Cybersecurity Help s.r.o.

Published: 2014-12-19 | Updated: 2020-08-09

Vulnerability identifier: #VU40994

Vulnerability risk: Medium

CVSSv3.1: 4.6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C]

CVE-ID: CVE-2014-9381

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Ettercap
Other software / Other software solutions

Vendor: ettercap.sourceforge.net

Description

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

Integer signedness error in the dissector_cvs function in dissectors/ec_cvs.c in Ettercap 0.8.1 allows remote attackers to cause a denial of service (crash) via a crafted password, which triggers a large memory allocation.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Ettercap: 0.8.1

External links
http://www.securityfocus.com/archive/1/534248/100/0/threaded
http://www.securityfocus.com/bid/71693
http://github.com/Ettercap/ettercap/pull/609
http://security.gentoo.org/glsa/201505-01
http://www.obrela.com/home/security-labs/advisories/osi-advisory-osi-1402/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in ettercap.sourceforge.net Ettercap