CVE-2002-2103 in HTTP Serverinformation

Résumé

par MITRE

Apache before 1.3.24, when writing to the log file, records a spoofed hostname from the reverse lookup of an IP address, even when a double-reverse lookup fails, which allows remote attackers to hide the original source of activities.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Réserver

05/08/2005

Divulgation

31/12/2002

Modérer

accepté

Entrée

VDB-19745

CPE

prêt

CWE

CWE-290 (confirmé)

CVSS

5.0 (NVD)

EPSS

0.06057

KEV

non

Activités

très faible

Secteur

Finance, Hospital, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-2103
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-2103
CVE Details	https://www.cvedetails.com/cve/CVE-2002-2103/

◂ Précédent Aperçu Suivant ▸

Might our Artificial Intelligence support you?

Check our Alexa App!