CVE-2014-9379 in Ettercapinfo

Summary

The radius_get_attribute function in dissectors/ec_radius.c in Ettercap 0.8.1 performs an incorrect cast, which allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via unspecified vectors, which triggers a stack-based buffer overflow.

Reservation

12/11/2014

Disclosure

12/19/2014

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
73329Ettercap Dissector radius_get_attribute memory corruption119Proof-of-ConceptOfficial fixCVE-2014-9379

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

PreviousOverviewNext

Do you need the next level of professionalism?

Upgrade your account now!