CVE-2005-1796

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2005-1796
Format string vulnerability in the curses_msg function in the Ncurses interface (ec_curses.c) for Ettercap before 0.7.3 allows remote attackers to execute arbitrary code.

7.5 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://ettercap.sourceforge.net/history.php Patch Vendor Advisory
http://secunia.com/advisories/15535 Broken Link
http://secunia.com/advisories/15664 Broken Link
http://secunia.com/advisories/16000 Broken Link
http://securitytracker.com/id?1014084 Broken Link Third Party Advisory VDB Entry
http://www.debian.org/security/2005/dsa-749 Third Party Advisory
http://www.gentoo.org/security/en/glsa/glsa-200506-07.xml Third Party Advisory
http://www.securityfocus.com/bid/13820 Broken Link Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2005/0670 Permissions Required
Configurations

Configuration 1 (hide)

cpe:2.3:a:ettercap:ettercap:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*
History

29 Mar 2023, 15:35

Type Values Removed Values Added
CPE cpe:2.3:a:gnu:ncurses:-:*:*:*:*:*:*:*
References (SECTRACK) http://securitytracker.com/id?1014084 - Broken Link (SECTRACK) http://securitytracker.com/id?1014084 - Broken Link, Third Party Advisory, VDB Entry

03 Mar 2023, 18:55

Type Values Removed Values Added
CPE cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:ncurses:-:*:*:*:*:*:*:*
References (SECTRACK) http://securitytracker.com/id?1014084 - (SECTRACK) http://securitytracker.com/id?1014084 - Broken Link
References (SECUNIA) http://secunia.com/advisories/15535 - Patch, Vendor Advisory (SECUNIA) http://secunia.com/advisories/15535 - Broken Link
References (VUPEN) http://www.vupen.com/english/advisories/2005/0670 - (VUPEN) http://www.vupen.com/english/advisories/2005/0670 - Permissions Required
References (DEBIAN) http://www.debian.org/security/2005/dsa-749 - (DEBIAN) http://www.debian.org/security/2005/dsa-749 - Third Party Advisory
References (BID) http://www.securityfocus.com/bid/13820 - (BID) http://www.securityfocus.com/bid/13820 - Broken Link, Third Party Advisory, VDB Entry
References (GENTOO) http://www.gentoo.org/security/en/glsa/glsa-200506-07.xml - (GENTOO) http://www.gentoo.org/security/en/glsa/glsa-200506-07.xml - Third Party Advisory
References (SECUNIA) http://secunia.com/advisories/16000 - (SECUNIA) http://secunia.com/advisories/16000 - Broken Link
References (SECUNIA) http://secunia.com/advisories/15664 - (SECUNIA) http://secunia.com/advisories/15664 - Broken Link
Information

Published : 2005-05-31 04:00

Updated : 2024-02-04 16:52

NVD link : CVE-2005-1796

Mitre link : CVE-2005-1796

CVE.ORG link : CVE-2005-1796

JSON object : View

Products Affected

debian

  • debian_linux

ettercap

  • ettercap
CWE
NVD-CWE-Other