What's new in Ettercap 0.8.2
Mar 16, 2015
- BUG FIX:
- Fixed some openssl deprecated functions usage
- Fixed log file ownership
- Fixed mixed output print
- Fixed drop_privs function usage
- Fixed nopromisc option usage.
- Fixed missing break in parser code.
- Improved redirect commands
- Fix truncated VLAN packet headers
- Fix ettercap.rc file (windows only)
- Various cmake fixes
- A ton of BSD bug fixes
- Simplify macosx cmake files
- Fix incorrect sequence number after TCP injection
- Fix pcap length, and aligment problems with libpcap
- Bug fixes and gtk code refactor (gtk box wrapper)
- Fix some ipv6 send issues
- Fixed sleep time on Windows (high CPU usage)
- Fixed many CVE vulnerabilities (some of them already fixed in 0.8.1):
- CVE-2014-6395 (Length Parameter Inconsistency)
- CVE-2014-6396 (Arbitrary write)
- CVE-2014-9376 (Negative index/underflow)
- CVE-2014-9377 (Heap overflow)
- CVE-2014-9378 (Unchecked return value)
- CVE-2014-9379 (Incorrect cast)
- CVE-2014-9380 (Buffer over-read)
- CVE-2014-9381 (Signedness error)
- NEW FEATURES:
- Updated etter.finger.mac
- Add TXT and ANY query support on dns_spoof
- New macosx travis-ci build!
- Enable again PDF generation
- REMOVED:
- Remove gprof support
New in Ettercap 0.8.1 (Oct 28, 2014)
- Bug Fix:
- Fixed incorrect checksum computation on 64-bit systems
- Fixed DNS resolution problems
- Fixed hurd build failure (not specific to hurd but hurd seems the first OS defining ESUCCESS in glibc)
- Fixed rpath handling
- Fixed scan host crash with recent kernels
- Fixed etter{log,filter} library path
- O5LOGON dissector fixes for stealth mode scans
- Fix constants to allow full hexadecimal characterset. Useful for filtering on ESP SPIs
- Fixed some incoherencies in gbls pointers in utils and core
- Fixed dhcp spoofing automatically start in text ui
- Many fixes in filter compiler
- Fixed lua installation path
- Many ipv6 fixes and improvements
- Fixed tests build failures
- Fixed many iconv detection problems
- Fixed many ctime problems
- Fixed many dissector ports
- Fixed timers incoherences
- Fixed powerpc build failure
- Fixed uniqueness of our include guards
- Fixed cmake warnings, by correctly linking our libraries
- Fixed clean target
- Fixed COOKIE_PATTERN string
- A ton of kfreebsd, freebsd, and MacOS fixes and build fixes
- Fixed with a new "regain_privs" the ip forwarding restore
- Fixed another scan crash
- Fixed host list updated (delegated to the main thread)
- Fixed etter.conf.v6 and etter.conf.v4 installation
- Fixed (removed) some old code
- Fixed (removed) some dbus interfaces listed in ettercap
- Fixed some libraries link issues
- Fixed various polkit installation directory issues
- Fixed plugin path issues
- Fixed bundled libs building order
- Fixed undefined ips added to the host list (e.g. 0.0.0.0 in dhcp discover)
- Fixed macosx builds
- Moved check framework in bundled_libs directory
- Fixed crash on scan for hosts, by adding a mutex
- Fixed libettercap.so linking, by removing curses and gtk stuff
- Fixed ip_add_to_int32 macro
- Fixed a ton of warnings in gtk, curses and core
- Fixed some documentation
- Fixed tests with eglibc >= 2.17
- Fixed check framework find, with fallback in the bundled one if not available
- Fixed bug in etter.finger.mac parsing
- Fixed ssl checks on cmake, now it is mandatory
- Fixed scan for hosts progress bar
- Fixed linux.org ip address on etter.dns conf file
- Fixed some memory leakages
- Fixed missing RelWithDebInfo on Cmake
- Fixed typos
- Fixed some performance issues in scan for hosts function
- Fixed race condition when scan progress was canceled
- Fixed cmake flags passing
- Fixed IPv6 build
- Fixed debug messages
- New Features:
- Iexperimental ESP detection/filtering
- make etter{log,filter} ipv6 compatible
- Enabled multithread scan for Curses interface
- New appdata xml file
- New experimental GTK3 support!
- New threaded host resolution!
- Many build and runtime performances improvements
- Ettercap builds on windows (MingW) again!
- New arp "smart" poisoning!
- New base64 encode and decode functions
- New execinject etterfilter command
- New ipv6 hidden scan mode
- New support for multiple plugins in UI mode
- New uninstall target
- Gnu/Hurd support!
- Automatically refresh plugin list
- Threading some plugins
- A new function for self-destruct plugins
- New INSTALL_EXEDIR cmake option, now you can have "ettercap" and the other binaries in two different directories!
- New Null/Loopback decoder!
- Added automatic irc notifications!
- Added some debug and fortify-source flags
- Added some travis builds!
- Updated etter.finger.mac
- Added support for parsing RIPv2 and OSPF MD5 authentication packets
- Updated curl and check bundled libraries
- updated etter.filter.examples file
- updated TODO list
- etterfilter now is IPv6 ready!
- Documentation updated
- Man pages updated
- New nd-poisoning!
- Increased IPv6 probe delay from 2 seconds to 3
- Removed:
- Removed hex_encode stuff
- Removed ec_pap.c since it was already implemented in ec_ppp.c
- Removed duplicate code, in favour of libettercap usage
New in Ettercap 0.8.0 (Sep 21, 2013)
- Bug Fix:
- Fixed some problems in fork and execve usage in case of command failure (sslstrip)
- Fixed dropping privileges for remote_browser plugin ran as root
- Fixed infinite loop when a http GET was issued on the attacker browser, while remote_browser was active
- Fixed some "atexit" bad references
- Fixed plugin load on text interface, if no number were entered
- Fixed problem spotted when ethtool wasn't installed on the machine
- Fixed old "ethereal" references
- Fixed missing newlines in printf
- Switching to ps2pdf as default (from ps2pdf13), it should point to ps2pdf14 on all distros
- Fix cmake file, dropped MACPORTS_BASE_DIRECTORY
- Fix problem in "stopping attacks" window not properly shown in gtk
- Fix problem in wrong pcap file saving
- Fix issue in send_udp function
- Fix problem in libnet rc detection
- Fix restore ip_forward by retrying up to 5 times
- Fix socket issues
- Fix for hex format display
- New send_tcp function, taking payload and length
- Fixed memory leak in remote browser plugin
- Fixed comparison bug in ec_decode
- Fixed UI input for GTK
- Fixed some memory leaks
- Fixed man pages and AUTHORS file
- Fixes in sslstrip plugin
- Many etter.dns fixes
- Many documentation fixes
- A ton of refactors/fixes in Cmake scripts
- Fix GTK crash when scanning hosts
- Fix build failure on Mac OS X 10.6
- Crash fix in target selection
- Disabled UID change for remote browser plugin
- Fixed remote browser plugin
- A ton of fixes in protocols and dissectors (dhcp, http, ppp, mpls)
- New Features:
- New ettercap logo
- Renamed help menu to "?", to avoid double "H" shortcut
- New WARN_MSG warning message
- Added message in DHCP spoofing when no mitm has started
- New horizontal scrollbar for messages in gtk view
- Disabled offload warning messages (only in Release mode)
- New ettercap-pkexec, policy and ettercap.desktop files for launching ettercap -G as a normal user with sudo privileges
- Automatic host list refresh in GTK GUI after scanning
- New fraggle plugin attack
- New fields in etter.fields file
- Cherry picked debian patches (svg icon)
- Added content print on http dissector
- Added support for negative dns replies
- Creation of (experimental) unit tests
- Creation of (experimental) libettercap
- Now you can build just the ettercap library (libettercap) without any GUIs
- Added travis-ci support
- DNS spoofing for IPv6 addresses
- PDF Docs generation is not optional
- Added SRV query handling to DNS spoof
- New mDNS spoof plugin
- New low level decoders
- New decoder for ip over pppoe
- Added PPP DLT to interfaces
- Add experimental Lua support to Ettercap
- New Bundle libnet and curl
- Full support for wifi decrypting (wep and wpa)
- Removed:
- Disabled update feature (not working anymore and not secure)
- Deprecated napster dissector
New in Ettercap 0.7.6 (Apr 4, 2013)
- Bug Fix:
- Fixed some parsing errors
- Fixes to TN3270 dissector and SSL Strip
- PostgreSQL dissector: Update output format to reflect release syntax or John the Ripper 1.7.9-Jumbo-8. The old format is still supported, but deprecated.
- Fixed memory leak in SSL Strip plugin
- Fixed check in invalid ip header
- Fixed QoS packets handling (they aren't dropped anymore)
- Fix in o5logon Heap Corruption
- New and updated OUI file
- Some memory leaks fixed
- Fixed some bugs in return values and fstat failures handling
- Fixed a bug in some password display (didn't get null terminated)
- Many fixes in gcc warnings when building
- Better cmake module to find curl and libnet
- Fixed bug in filters load
- Fixes in HTTP and HTTPs protocols
- Fixed UI deadlock
- Fixes in tcp and http handling (infinite loop and crash)
- Better reads in BGP to avoid invalid reads
- New Features:
- New logo
- Added ascii FQDN support to DHCP ACK
- Added UA parsing to http packets
- Added support for IPv4 and IPv6 Tunnels
- New mDNS dissector
- Added PPI support (per packet information) for wireless captures
- Ensure that we find required packages with cmake
- New clean-all cmake target
- Print a message when done reading PCAP file
- Removed:
- Removed 'u' and 'p' fields from etter.fields file
New in Ettercap 0.7.4 (Dec 5, 2011)
- fixed resource depletion issue
- buffer access out-of-bounds issues
- fixed DNS dissector not working on 64bit systems
- multiple buffer overflows
- multiple memory leaks
- multiple files with obsolete code
- fixed SEND L3 errors experienced by some users
- fixed a compilation error under Mac OS X Lion
- updated build system