CVE-2014-9381

EPSS 0.97%

發布日:2014/12/19修改日:2026/4/28

描述

Integer signedness error in the dissector_cvs function in dissectors/ec_cvs.c in Ettercap 0.8.1 allows remote attackers to cause a denial of service (crash) via a crafted password, which triggers a large memory allocation.

受影響套件(1)

Debian/ettercapfrom 0, < 1:0.8.1-3

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-9381