User: Password:
|
|
Subscribe / Log in / New account

ettercap: code execution

Package(s):ettercap CVE #(s):CVE-2010-3844
Created:May 19, 2014 Updated:May 21, 2014
Description: From the Gentoo advisory:

A format string flaw in Ettercap could cause a buffer overflow.

A remote attacker could entice a user to load a specially crafted configuration file using Ettercap, possibly resulting in execution of arbitrary code with the privileges of the process or a Denial of Service condition.

A local attacker could perform symlink attacks to overwrite arbitrary files with the privileges of the user running the application.

Alerts:
Gentoo 201405-12 ettercap 2014-05-17

(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds