Source: ettercap Version: 1:0.8.2-1 Severity: important Tags: upstream security Forwarded: https://github.com/Ettercap/ettercap/issues/792
Hi, the following vulnerability was published for ettercap. CVE-2017-8366[0]: | The strescape function in ec_strings.c in Ettercap 0.8.2 allows remote | attackers to cause a denial of service (heap-based buffer overflow and | application crash) or possibly have unspecified other impact via a | crafted filter that is mishandled by etterfilter. If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2017-8366 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8366 [1] https://github.com/Ettercap/ettercap/issues/792 Please adjust the affected versions in the BTS as needed. Regards, Salvatore
