TCP Wrappers in FreeBSD with PARANOID ACL option allows bypassing access restrictions via DNS spoofing

TCP Wrappers in FreeBSD with PARANOID ACL option allows bypassing access restrictions via DNS spoofing

CVE-2001-1155 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

TCP Wrappers (tcp_wrappers) in FreeBSD 4.1.1 through 4.3 with the PARANOID ACL option enabled does not properly check the result of a reverse DNS lookup, which could allow remote attackers to bypass intended access restrictions via DNS spoofing.

Learn more about our Web Application Penetration Testing UK.