The radius_get_attribute function in dissectors/ec_radius... · CVE-2014-9379 · GitHub Advisory Database · GitHub

The radius_get_attribute function in dissectors/ec_radius...

High severity Unreviewed Published May 13, 2022 to the GitHub Advisory Database • Updated Feb 1, 2023

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

The radius_get_attribute function in dissectors/ec_radius.c in Ettercap 0.8.1 performs an incorrect cast, which allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via unspecified vectors, which triggers a stack-based buffer overflow.

References

Published by the National Vulnerability Database

Dec 19, 2014

Published to the GitHub Advisory Database May 13, 2022

Last updated Feb 1, 2023