← Back

Mtr

mtr

Vendor: Matt Kimball And Roger Wolff • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2008-2357
1Matt Kimball And Roger Wolff
1Mtr
Apr 23, 2026
May 21, 2008
N/A· v4
N/A· v3
6.8 MEDIUM· v2
Stack-based buffer overflow in the split_redraw function in split.c in mtr before 0.73, when invoked with the -p (aka --split) option, allows remote attackers to execute arbitrary code via a crafted DNS PTR record. NOTE...Show more
Stack-based buffer overflow in the split_redraw function in split.c in mtr before 0.73, when invoked with the -p (aka --split) option, allows remote attackers to execute arbitrary code via a crafted DNS PTR record. NOTE: it could be argued that this is a vulnerability in the ns_name_ntop function in resolv/ns_name.c in glibc and the proper fix should be in glibc; if so, then this should not be treated as a vulnerability in mtr.Show less
CVE-2000-0172
2Matt Kimball And Roger Wolff
Turbolinux
2Mtr
Turbolinux
Apr 16, 2026
Mar 3, 2000
N/A· v4
N/A· v3
7.2 HIGH· v2
The mtr program only uses a seteuid call when attempting to drop privileges, which could allow local users to gain root privileges.