Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Heap-based buffer overflow in the dissector_postgresql function in dissectors/ec_postgresql.c in Ettercap before 0.8.1 allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted password length value that is inconsistent with the actual length of the password.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Ettercap 基于堆的缓冲区错误漏洞
Vulnerability Description
Ettercap是Ettercap团队开发的一套基于Linux和BSD平台的多用途数据包嗅探程序,它支持创建和发送伪造的包、发送从网络适配器到应用软件各种级别的包、绑定监听数据到一个本地端口等。 Ettercap 8.0及之前版本的dissectors/ec_postgresql.c文件中的‘dissector_postgresql’函数中存在基于堆的缓冲区溢出漏洞。远程攻击者可借助特制的密码长度值利用该漏洞造成拒绝服务或执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A