cbcvebase.

Mtr vulnerabilities

4 known vulnerabilities affecting mtr/mtr.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2LOW1

Vulnerabilities

Page 1 of 1
CVE-2008-2357P3MEDIUMCVSS 6.8≥ 0, < 0.73-12008-05-21
CVE-2008-2357 [MEDIUM] CVE-2008-2357: Stack-based buffer overflow in the split_redraw function in split Stack-based buffer overflow in the split_redraw function in split.c in mtr before 0.73, when invoked with the -p (aka --split) option, allows remote attackers to execute arbitrary code via a crafted DNS PTR record. NOTE: it could be argued that this is a vulnerability in the ns_name_ntop function in resolv/ns_name.c in glibc and the proper fix should be in glibc; if so, then this should not be
osv
CVE-2025-49809P3HIGHCVSS 7.8≤ 0.952025-07-04
CVE-2025-49809 [HIGH] CWE-829 CVE-2025-49809: mtr through 0.95, in certain privileged contexts, mishandles execution of a program specified by the mtr through 0.95, in certain privileged contexts, mishandles execution of a program specified by the MTR_PACKET environment variable. NOTE: mtr on macOS may often have Sudo rules, as an indirect consequence of Homebrew not installing setuid binaries.
nvd
CVE-2002-0497P4LOWCVSS 2.1v0.412002-08-12
CVE-2002-0497 [LOW] CVE-2002-0497: Buffer overflow in mtr 0.46 and earlier, when installed setuid root, allows local users to access a Buffer overflow in mtr 0.46 and earlier, when installed setuid root, allows local users to access a raw socket via a long MTR_OPTIONS environment variable.
nvd
CVE-2004-1224P4MEDIUMCVSS 4.6v0.55v0.56+9 more2005-01-10
CVE-2004-1224 [MEDIUM] CVE-2004-1224: Off-by-one error in the mtr_curses_keyaction function for mtr 0.55 through 0.65 allows local users t Off-by-one error in the mtr_curses_keyaction function for mtr 0.55 through 0.65 allows local users to hijack raw sockets, as demonstrated using the "s" keybinding, which leaves a buffer without a NULL terminator.
nvdosv
Mtr vulnerabilities | cvebase