Luca Deri » Ntop : Security Vulnerabilities, CVEs,

CVE-2000-0705

ntop running in web mode allows remote attackers to read arbitrary files via a .. (dot dot) attack.
Max CVSS
5.0
EPSS Score
2.70%
Published
2000-10-20
Updated
2008-09-10

CVE-2000-0706

Buffer overflows in ntop running in web mode allows remote attackers to execute arbitrary commands.
Max CVSS
10.0
EPSS Score
2.45%
Published
2000-10-20
Updated
2008-09-10

CVE-2002-0412

Format string vulnerability in TraceEvent function for ntop before 2.1 allows remote attackers to execute arbitrary code by causing format strings to be injected into calls to the syslog function, via (1) an HTTP GET request, (2) a user name in HTTP authentication, or (3) a password in HTTP authentication.
Max CVSS
7.5
EPSS Score
9.15%
Published
2002-08-12
Updated
2016-10-18

CVE-2005-3387

The startup script in packages/RedHat/ntop.init in ntop before 3.2, when ntop.conf is writable by users besides root, creates temporary files insecurely, which allows remote attackers to execute arbitrary code.
Max CVSS
4.6
EPSS Score
0.54%
Published
2005-11-01
Updated
2011-03-08
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close