Vulnerabilities > CVE-2002-1677 - Path Disclosure vulnerability in Mrtg Mrtgconfig 0.5.9
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
14all.cgi 1.1p15 in mrtgconfig allows remote attackers to determine the physical path to the web root directory via a request with an invalid cfg parameter, which generates an error message that reveals the path.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |