Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0232

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2002-0232
Last Modified 05 Sep 2008 04:27:30
Published 29 May 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0232

Summary

Directory traversal vulnerability in Multi Router Traffic Grapher (MRTG) allows remote attackers to read portions of arbitrary files via a .. (dot dot) in the cfg parameter for (1) 14all.cgi, (2) 14all-1.1.cgi, (3) traffic.cgi, or (4) mrtg.cgi.

Vulnerable Systems

Application

  • Mrtg Multi Router Traffic Grapher Cgi 2.9.17


References

BUGTRAQ - 20020202 new advisory

BID - 4017

XF - mrtg-cgi-view-files(8062)


Last Updated: 27 May 2016 10:36:50