I recently tried to do a MiTM attack on my network using ettercap. I have a router, two windows 7 machines : Host A and Host B, and Backtrack on a VM.
In the ettercap window I added the router as TARGET 1, Host A as TARGET 2 then started Arp poisoning. When I checked the arp tables of Host B, I found that it was also targeted by the attack.
Any explanations? How can I exclude Host B?
Thank you.
EDIT :
After switching to Ettercap v0.8, the attack works correctly, only HOST B sees a spoofed router's mac address. Maybe it was a bug in the old version.