nnposter has reported a vulnerability in Ntop, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges.
The vulnerability is caused due to Red Hat initialisation script, "packages/RedHat/ntop.init", creating the "ntopinitparms" temporary file insecurely in "/tmp". This can be exploited via symlink attacks to create or overwrite arbitrary files with the privileges of the user running the affected script.
http://www.linuxlinks.com/portal/news/article.php?story=20051031140251603