Skip to content
Critical Published: Aug 23, 2001 Modified: Apr 03, 2025

CVE-2001-1155

9.8 CVSS Score Critical
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Export CVE-2001-1155 Data:
Share:
Link copied!

Description

TCP Wrappers (tcp_wrappers) in FreeBSD 4.1.1 through 4.3 with the PARANOID ACL option enabled does not properly check the result of a reverse DNS lookup, which could allow remote attackers to bypass intended access restrictions via DNS spoofing.

CVSS Vector Details

Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Affected Software Configurations

  • o freebsd freebsd * * * * * * * *

Weaknesses (CWE)

  • CWE-863

References & External Links

External Resources

NVD Official Record Exploit-DB Search Exploits CVE Details Statistics GitHub PoC / Tools X / Twitter Discussions Google Search More

Related Vulnerabilities

CVE-2005-2136 CVSS 0 Same weakness: CWE-863 CVE-2006-6679 CVSS 7.5 Same weakness: CWE-863 CVE-2007-2586 CVSS 0 Same weakness: CWE-863 CVE-2008-0595 CVSS 0 Same weakness: CWE-863 CVE-2008-3424 CVSS 0 Same weakness: CWE-863

CVE History Timeline

Jan 01, 2004 05:00 Initial Analysis
Feb 16, 2024 16:51 Reanalysis
May 14, 2024 01:19 CVE Modified
Nov 20, 2024 23:37 CVE Modified
← Back to CVE Tracker