Format String Vulnerability in Ettercap's Ncurses Interface
CVE-2005-1796

Currently unrated

Key Information:

Vendor: Ettercap
Status: Ettercap
Vendor: CVE Published:; 31 May 2005

What is CVE-2005-1796?

A format string vulnerability exists in the curses_msg function within the Ncurses interface of Ettercap versions prior to 0.7.3. This issue enables remote attackers to execute arbitrary code, potentially compromising the host system's security by manipulating the format string parameters. It is crucial for users of affected versions to apply security updates promptly to mitigate risks.

References

http://securitytracker.com/id?1014084

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/15535

third-party-advisoryx_refsource_SECUNIA

http://www.debian.org/security/2005/dsa-749

vendor-advisoryx_refsource_DEBIAN

EPSS Score

8% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Jun 1, 2005
Vulnerability published
May 31, 2005

CVE-2005-1796 Data

JSON