CVE Vulnerabilities

CVE-2001-1155

Published: Aug 23, 2001 | Modified: Sep 05, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

TCP Wrappers (tcp_wrappers) in FreeBSD 4.1.1 through 4.3 with the PARANOID ACL option enabled does not properly check the result of a reverse DNS lookup, which could allow remote attackers to bypass intended access restrictions via DNS spoofing.

Affected Software

Name Vendor Start Version End Version
Freebsd Freebsd 4.1.1 4.1.1
Freebsd Freebsd 4.2 4.2
Freebsd Freebsd 4.3 4.3

References