Searching reverse software vulnerabilities

The command port for PGP Certificate Server 2.5

Certificate | command | Server | port | PGP |

The command port for PGP Certificate Server 2.5.0 and 2.5.1 allows remote attackers to cause a denial of service if their hostname does not have a reverse DNS entry and they connect to port 4000.


The line printer daemon (lpd) in the lpr packag

printer | daemon | line |

The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolved hostname of the local machine to the hostname of the print server as returned by gethostname, which allows remote attackers to bypass intended access controls by modifying the DNS for the attacking IP.


Buffer overflow in oops WWW proxy server 1.4.6

overflow | server | Buffer | proxy | oops |

Buffer overflow in oops WWW proxy server 1.4.6 (and possibly other versions) allows remote attackers to execute arbitrary commands via a long host or domain name that is obtained from a reverse DNS lookup.


Cross-site scripting vulnerability in Webalizer

vulnerability | specifying | Cross-site | attackers | arbitrary | Webalizer | scripting | versions | possibly | inject | 201-06 | allows | remote | other | them | HTML | tags |

Cross-site scripting vulnerability in Webalizer 2.01-06, and possibly other versions, allows remote attackers to inject arbitrary HTML tags by specifying them in (1) search keywords embedded in HTTP referrer information, or (2) host names that are retrieved via a reverse DNS lookup.


Legato Networker before 6.1 allows remote attac

restrictions | connecting | privileges | determined | interface | attackers | Networker | hostname | spoofing | reverse | address | allows | before | lookup | Legato | access | remote | bypass | server | admin | whose | name | gain | DNS | can | not |

Legato Networker before 6.1 allows remote attackers to bypass access restrictions and gain privileges on the Networker interface by spoofing the admin server name and IP address and connecting to Networker from an IP address whose hostname can not be determined by a DNS reverse lookup.


Open Projects Network Internet Relay Chat (IRC)

Projects | Internet | Network | Relay | Chat | Open |

Open Projects Network Internet Relay Chat (IRC) daemon u2.10.05.18 does not perform a double-reverse DNS lookup, which allows remote attackers to spoof any valid hostname on the Internet. NOTE: a followup post suggests that this is not an issue in the daemon.


ProFTPD 1.2.2rc2, and possibly other versions,

reverse-resolved | resolution | performing | hostnames | incorrect | attackers | hostname | properly | possibly | versions | forward | ProFTPD | remote | bypass | 122rc2 | allows | verify | logged | client | cause | which | other | does | ACLs | not |

ProFTPD 1.2.2rc2, and possibly other versions, does not properly verify reverse-resolved hostnames by performing forward resolution, which allows remote attackers to bypass ACLs or cause an incorrect client hostname to be logged.


Buffer overflow in Webalizer 2.01-06, when conf

connecting | configured | attackers | monitored | arbitrary | Webalizer | overflow | resolves | hostname | execute | address | lookups | reverse | server | Buffer | remote | 201-06 | allows | long | code | DNS | use | web |

Buffer overflow in Webalizer 2.01-06, when configured to use reverse DNS lookups, allows remote attackers to execute arbitrary code by connecting to the monitored web server from an IP address that resolves to a long hostname.


Buffer overflows in xtell (xtelld) 1.91.1 and e

overflows | Buffer | xtell |

Buffer overflows in xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows remote attackers to execute arbitrary code via (1) a long DNS hostname that is determined using reverse DNS lookups, (2) a long AUTH string, or (3) certain data in the xtell request.


Multiple buffer overflows in Hypermail 2 before

overflows | Hypermail | Multiple | before | buffer |

Multiple buffer overflows in Hypermail 2 before 2.1.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code (1) via a long attachment filename that is not properly handled by the hypermail executable, or (2) by connecting to the mail CGI program from an IP address that reverse-resolves to a long hostname.


OpenSSH 3.6.1 and earlier, when restricting hos

OpenSSH |

OpenSSH 3.6.1 and earlier, when restricting host access by numeric IP addresses and with VerifyReverseMapping disabled, allows remote attackers to bypass "from=" and "user@host" address restrictions by connecting to a host from a system whose reverse DNS hostname contains the numeric IP address.


Cross-site scripting (XSS) vulnerability in Fre

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in FreeScripts VisitorBook LE (visitorbook.pl) allows remote attackers to inject arbitrary HTML or web script via (1) the "do" parameter, (2) via the "user" parameter from a host with a malicious reverse DNS name, (3) via quote marks or ampersands in other parameters.


FreeScripts VisitorBook LE (visitorbook.pl) log

VisitorBook | FreeScripts |

FreeScripts VisitorBook LE (visitorbook.pl) logs the reverse DNS name of a visiting host, which allows remote attackers to spoof the origin of their incoming requests and facilitate cross-site scripting (XSS) attacks.


rpc.mountd in nfs-utils after 1.0.3 and before

nfs-utils | rpcmountd | after |

rpc.mountd in nfs-utils after 1.0.3 and before 1.0.6 allows attackers to cause a denial of service (crash) via an NFS mount of a directory from a client whose reverse DNS lookup name is different from the forward lookup name.


The char_buffer_read function in the mod_ssl mo

char_buffer_read | attackers | proxying | function | reverse | mod_ssl | service | allows | remote | denial | Apache | module | server | cause | using | SSL |

The char_buffer_read function in the mod_ssl module for Apache 2.x, when using reverse proxying to an SSL server, allows remote attackers to cause a denial of service (segmentation fault).


Microsoft Proxy Server 2.0 and Microsoft ISA Se

Microsoft | Server | Proxy | ISA |

Microsoft Proxy Server 2.0 and Microsoft ISA Server 2000 (which is included in Small Business Server 2000 and Small Business Server 2003 Premium Edition) allows remote attackers to spoof trusted Internet content on a specially crafted webpage via spoofed reverse DNS lookup results.


Cisco IOS 12.2(15) and earlier allows remote at

Cisco | IOS |

Cisco IOS 12.2(15) and earlier allows remote attackers to cause a denial of service (refused VTY (virtual terminal) connections), via a crafted TCP connection to the Telnet or reverse Telnet port.


Cross-site scripting (XSS) vulnerability in mem

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in member.php in Open Bulletin Board (OpenBB) 1.0.8 allows remote attackers to inject arbitrary web script or HTML via the reverse parameter in a list action.


Cerulean Studios Trillian 3.0 allows remote att

attackers | Trillian | Cerulean | service | Studios | denial | allows | remote | cause |

Cerulean Studios Trillian 3.0 allows remote attackers to cause a denial of service (crash) via a reverse direct connection from a different client, as demonstrated using LICQ.


Stack-based buffer overflow in the dns_decode_r

dns_decode_reverse_name | CVE-2007-1465 | dproxy-nexgen | dns_decodec | Stack-based | attackers | arbitrary | different | function | overflow | crafted | sending | execute | 53/udp | allows | packet | buffer | remote | issue | than | code | port |

Stack-based buffer overflow in the dns_decode_reverse_name function in dns_decode.c in dproxy-nexgen allows remote attackers to execute arbitrary code by sending a crafted packet to port 53/udp, a different issue than CVE-2007-1465.


Software vulnerabilities results 1 to 20 of 26     
Page: 12