The MITRE CVE dictionary describes this issue as:
Buffer overflow in mtr 0.46 and earlier, when installed setuid root, allows local users to access a raw socket via a long MTR_OPTIONS environment variable.
Find out more about CVE-2002-0497 from the
MITRE CVE dictionary dictionary and
Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.