Debian Affected

Updated:  July 11, 2005

Status

Affected

Vendor Statement

According to Debian Security Advisory DSA-749-1: The old stable distribution (woody) did not include ettercap. For the stable distribution (sarge), this problem has been fixed in version 0.7.1-1sarge1. For the unstable distribution (sid), this problem has been fixed in version 0.7.3-1.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

We have no additional comments at this time.

Ettercap Affected

Updated:  June 21, 2005

Status

Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The Ettercap maintainers have released v.NG-0.7.3 to address this issue: http://ettercap.sourceforge.net/history.php

FreeBSD Unknown

Updated:  July 11, 2005

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

FreeBSD does not include Ettercap in the base system, but it is available in the "ports" collection.

Gentoo Affected

Updated:  June 21, 2005

Status

Affected

Vendor Statement

Per advisory GLSA 200506-07 / ettercap: All Ettercap users should upgrade to the latest available version: # emerge --sync # emerge --ask --oneshot --verbose ">=net-analyzer/ettercap-0.7.3"

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

US-CERT has no additional comments at this time.

NetBSD Unknown

Updated:  July 11, 2005

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

NetBSD does not include ettercap in the base collection, but it is available via the "ports" collection.

OpenBSD Unknown

Updated:  July 11, 2005

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

Ettercap is not included in the base system, but it is available via the "ports" collection.