CVE-2002-2103 Information

Description

Apache before 1.3.24 when writing to the log file records a spoofed hostname from the reverse lookup of an IP address even when a double-reverse lookup fails which allows remote attackers to hide the original source of activities.

Reference

http://www.apache.org/dist/httpd/CHANGES_1.3 http://www.iss.net/security_center/static/8629.php http://www.securityfocus.com/bid/4358