Lucene search
K

6 matches found

Redos
Redos
added 2025/08/06 12:0 a.m.7 views

ROS-20250806-12

A vulnerability in the mtr network diagnostic tool is related to improper handling of an item specified in the MTRPACKET environment variable. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service...

7.8CVSS6.1AI score0.00142EPSS
Exploits0
OSV
OSV
added 2025/07/04 1:15 p.m.3 views

UBUNTU-CVE-2025-49809

mtr through 0.95, in certain privileged contexts, mishandles execution of a program specified by the MTRPACKET environment variable. NOTE: mtr on macOS may often have Sudo rules, as an indirect consequence of Homebrew not installing setuid binaries...

7.8CVSS6AI score0.00142EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2025/07/04 12:0 a.m.3 views

CVE-2025-49809

mtr through 0.95, in certain privileged contexts, mishandles execution of a program specified by the MTRPACKET environment variable. NOTE: mtr on macOS may often have Sudo rules, as an indirect consequence of Homebrew not installing setuid binaries...

7.8CVSS7.2AI score0.00142EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 6:8 a.m.4 views

SUSE CVE-2008-2357

Stack-based buffer overflow in the splitredraw function in split.c in mtr before 0.73, when invoked with the -p aka --split option, allows remote attackers to execute arbitrary code via a crafted DNS PTR record. NOTE: it could be argued that this is a vulnerability in the nsnamentop function in...

6.8CVSS8.3AI score0.04705EPSS
Exploits1References4
OSV
OSV
added 2008/05/21 1:24 p.m.2 views

DEBIAN-CVE-2008-2357

Stack-based buffer overflow in the splitredraw function in split.c in mtr before 0.73, when invoked with the -p aka --split option, allows remote attackers to execute arbitrary code via a crafted DNS PTR record. NOTE: it could be argued that this is a vulnerability in the nsnamentop function in...

6.8CVSS7.8AI score0.04705EPSS
Exploits1References1
Debian
Debian
added 2000/03/09 6:0 a.m.3 views

[SECURITY] New version of mtr released

Package: mtr Vulnerability type: possible local exploit Debian-specific: no The version of mtr as distributed in Debian GNU/Linux 2l1 aka slink did not drop root privileges correctly. While there are no known exploits it is conceivable that a weakness in gtk or ncurses could be used to exploit...

5.8AI score
Exploits0
Rows per page
Query Builder