Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1155

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-1155
Last Modified 05 Sep 2008 04:25:49
Published 23 Aug 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-1155

Summary

TCP Wrappers (tcp_wrappers) in FreeBSD 4.1.1 through 4.3 with the PARANOID ACL option enabled does not properly check the result of a reverse DNS lookup, which could allow remote attackers to bypass intended access restrictions via DNS spoofing.

Vulnerable Systems

Operating System

  • Freebsd 4.1.1

  • Freebsd 4.2

  • Freebsd 4.3


References

FREEBSD - FreeBSD-SA-01:56

OSVDB - 5454


Last Updated: 27 May 2016 10:36:32