CVE-2002-0232

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
29/05/2002
Last modified:
03/04/2025

Description

Directory traversal vulnerability in Multi Router Traffic Grapher (MRTG) allows remote attackers to read portions of arbitrary files via a .. (dot dot) in the cfg parameter for (1) 14all.cgi, (2) 14all-1.1.cgi, (3) traffic.cgi, or (4) mrtg.cgi.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:mrtg:multi_router_traffic_grapher_cgi:2.9.17:*:unix:*:*:*:*:*
cpe:2.3:a:mrtg:multi_router_traffic_grapher_cgi:2.9.17:*:win32:*:*:*:*:*