CVE-2002-0412

Name of the Vulnerable Software and Affected Versions ntop versions prior to 2.1

Description The issue allows remote attackers to execute arbitrary code by injecting format strings into calls to the syslog function. This can be achieved via an HTTP GET request, a user name in HTTP authentication, or a password in HTTP authentication, exploiting the TraceEvent function.

Recommendations For versions prior to 2.1, update to version 2.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the TraceEvent function until a patch is available. Avoid using user-supplied input in the username and password variables for HTTP authentication in the affected API endpoint until the issue is resolved.