Description

Apache before 1.3.24, when writing to the log file, records a spoofed hostname from the reverse lookup of an IP address, even when a double-reverse lookup fails, which allows remote attackers to hide the original source of activities.

Remediation

References

CVE-2002-2103

Related Vulnerabilities

WordPress Plugin WP Upload Restriction Multiple Vulnerabilities (2.2.3)

WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (1.2.05.20)

WordPress Plugin WP Maps-Display Google Maps Perfectly with Ease Unspecified Vulnerability (3.1.6)

WordPress Resource Management Errors Vulnerability (CVE-2014-5266)

Joomla! Core 2.5.x Security Bypass (2.5.0 - 2.5.24)

Severity

Medium

Classification

CVE-2002-2103

Tags

Missing Update Known Vulnerabilities