CVE-2005-1796
ettercap - format string error
EPSS 8.2%
Description
Format string vulnerability in the curses_msg function in the Ncurses interface (ec_curses.c) for Ettercap before 0.7.3 allows remote attackers to execute arbitrary code.
How to fix CVE-2005-1796
To remediate CVE-2005-1796, upgrade the affected package to a fixed version below.
- Debian/ettercap—upgrade to 1:0.7.1-1.1 or later
- Debian/ettercap—upgrade to 1:0.7.1-1sarge1 or later
Is CVE-2005-1796 being exploited?
Moderate — EPSS is 8.2%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (2)
- from 0, < 1:0.7.1-1.1
- from 0, < 1:0.7.1-1sarge1