{"id":"CVE-2017-6430","details":"The compile_tree function in ef_compiler.c in the Etterfilter utility in Ettercap 0.8.2 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted filter.","modified":"2026-03-14T09:23:22.251964Z","published":"2017-03-15T15:59:01.030Z","related":["MGASA-2017-0130"],"references":[{"type":"WEB","url":"http://www.securityfocus.com/archive/1/540223/100/0/threaded"},{"type":"WEB","url":"http://www.securitytracker.com/id/1038057"},{"type":"ADVISORY","url":"http://www.debian.org/security/2017/dsa-3874"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/96582"},{"type":"FIX","url":"https://github.com/LocutusOfBorg/ettercap/commit/626dc56686f15f2dda13c48f78c2a666cb6d8506"},{"type":"EVIDENCE","url":"https://github.com/Ettercap/ettercap/issues/782"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/Ettercap/ettercap","events":[{"introduced":"0"},{"last_affected":"09dfbe5e1ae5e4c2868b3aaa942c197845c51843"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"0.8.2"}]}},{"type":"GIT","repo":"https://github.com/locutusofborg/ettercap","events":[{"introduced":"0"},{"fixed":"626dc56686f15f2dda13c48f78c2a666cb6d8506"}]}],"versions":["upstream/0.7.5","upstream/0.7.5.1","upstream/0.7.5.2","upstream/0.7.5.3","upstream/0.7.6","upstream/0.8.0","upstream/0.8.0+git20140910","upstream/0.8.1","v0.7.5","v0.7.5.1","v0.7.5.2","v0.7.5.3","v0.7.6","v0.8.0","v0.8.1","v0.8.2","version_0.7.4","version_0.7.4.1"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-6430.json","vanir_signatures":[{"source":"https://github.com/locutusofborg/ettercap/commit/626dc56686f15f2dda13c48f78c2a666cb6d8506","signature_version":"v1","deprecated":false,"target":{"file":"utils/etterfilter/ef_compiler.c"},"digest":{"threshold":0.9,"line_hashes":["336465565215562215652244387389245473016","28560164998777911115492888519345378280","136284130910114790197394785591963922456","210002587334061340802555627301019573579"]},"signature_type":"Line","id":"CVE-2017-6430-16575dcd"},{"source":"https://github.com/locutusofborg/ettercap/commit/626dc56686f15f2dda13c48f78c2a666cb6d8506","signature_version":"v1","deprecated":false,"target":{"file":"utils/etterfilter/ef_output.c"},"digest":{"threshold":0.9,"line_hashes":["287394146260016701954750356655470886257","313488454889957134284126930510380773617","222964833732127740785513491909308400287"]},"signature_type":"Line","id":"CVE-2017-6430-4d9dcc14"},{"source":"https://github.com/locutusofborg/ettercap/commit/626dc56686f15f2dda13c48f78c2a666cb6d8506","signature_version":"v1","deprecated":false,"target":{"file":"utils/etterfilter/ef_compiler.c","function":"compile_tree"},"digest":{"function_hash":"73824362593736277241881711187549870075","length":592},"signature_type":"Function","id":"CVE-2017-6430-588225c7"},{"source":"https://github.com/locutusofborg/ettercap/commit/626dc56686f15f2dda13c48f78c2a666cb6d8506","signature_version":"v1","deprecated":false,"target":{"file":"utils/etterfilter/ef_output.c","function":"write_output"},"digest":{"function_hash":"210332981582541740180400158402695521870","length":1028},"signature_type":"Function","id":"CVE-2017-6430-71d51fb0"},{"source":"https://github.com/locutusofborg/ettercap/commit/626dc56686f15f2dda13c48f78c2a666cb6d8506","signature_version":"v1","deprecated":false,"target":{"file":"utils/etterfilter/ef_main.c"},"digest":{"threshold":0.9,"line_hashes":["318727011721267724420573914741129846671","224398428033894190355302470922977823748","276297051888253384984039647624144958576","149843702893886052836448695891528775079","268372711161779612538666895502505031463","68225286366033642804777333696016389839","60682084748572549661968268298880888572","272351167169432612797003637060841709973","307039078593118820577922940276223332103"]},"signature_type":"Line","id":"CVE-2017-6430-85cdc748"},{"source":"https://github.com/locutusofborg/ettercap/commit/626dc56686f15f2dda13c48f78c2a666cb6d8506","signature_version":"v1","deprecated":false,"target":{"file":"utils/etterfilter/ef_main.c","function":"main"},"digest":{"function_hash":"39611336973751834281728762465384394335","length":1024},"signature_type":"Function","id":"CVE-2017-6430-f513dee3"}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}