http://article.gmane.org/gmane.comp.security.oss.general/3660

https://bugs.launchpad.net/ubuntu/+source/ettercap/+bug/656347

https://bugzilla.redhat.com/show_bug.cgi?id=643453

Red Hat, Inc. CWE-787

Red Hat, Inc. CWE-120

The gtkui_conf_read function in src/interfaces/gtk/ec_gtk_conf.c in Ettercap 0.7.3, when the GTK interface is used, does not ensure that the contents of the .ettercap_gtk file are controlled by the root user, which allows local users to conduct stack-based buffer overflow attacks and possibly execute arbitrary code, cause a denial of service (memory consumption), or possibly have unspecified other impact via crafted lines in this file.

The GTK version of ettercap uses a global settings file at /tmp/.ettercap_gtk and does not verify ownership of this file. When parsing this file for settings in gtkui_conf_read() (src/interfacesgtk/ec_gtk_conf.c), an unchecked sscanf() call allows a maliciously placed settings file to overflow a statically-sized buffer on the stack.

Red Hat, Inc. CWE-120

http://article.gmane.org/gmane.comp.security.oss.general/3660 [No Types Assigned]

http://secunia.com/advisories/41820 [Not Applicable]

http://www.openwall.com/lists/oss-security/2010/10/13/2 [Mailing List, Third Party Advisory]

http://www.openwall.com/lists/oss-security/2010/10/13/6 [Mailing List, Third Party Advisory]

http://www.openwall.com/lists/oss-security/2010/10/14/1 [Mailing List, Third Party Advisory]

http://www.openwall.com/lists/oss-security/2010/10/14/2 [Mailing List, Third Party Advisory]

NIST AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

NIST (AV:L/AC:L/Au:N/C:P/I:P/A:P)

NIST CWE-787

OR
     *cpe:2.3:a:ettercap-project:ettercap:0.7.3:*:*:*:*:*:*:*

http://secunia.com/advisories/41820 No Types Assigned

http://secunia.com/advisories/41820 Not Applicable

http://www.openwall.com/lists/oss-security/2010/10/13/2 No Types Assigned

http://www.openwall.com/lists/oss-security/2010/10/13/2 Mailing List, Third Party Advisory

http://www.openwall.com/lists/oss-security/2010/10/13/6 No Types Assigned

http://www.openwall.com/lists/oss-security/2010/10/13/6 Mailing List, Third Party Advisory

http://www.openwall.com/lists/oss-security/2010/10/14/1 No Types Assigned

http://www.openwall.com/lists/oss-security/2010/10/14/1 Mailing List, Third Party Advisory

http://www.openwall.com/lists/oss-security/2010/10/14/2 No Types Assigned

http://www.openwall.com/lists/oss-security/2010/10/14/2 Mailing List, Third Party Advisory

https://bugs.launchpad.net/ubuntu/+source/ettercap/+bug/656347 No Types Assigned

https://bugs.launchpad.net/ubuntu/+source/ettercap/+bug/656347 Patch, Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=643453 No Types Assigned

https://bugzilla.redhat.com/show_bug.cgi?id=643453 Issue Tracking, Third Party Advisory