ntop running in web mode allows remote attackers to read arbitrary files via a .. (dot dot) attack.Referenceshttp://www.securityfocus.com/bid/1550http://www.redhat.com/support/errata/RHSA-2000-049.htmlhttp://archives.neohapsis.com/archives/bugtraq/2000-07/0459.htmlhttp://www.osvdb.org/1496
