CVE-2001-1155 Information

Description

TCP Wrappers (tcp_wrappers) in FreeBSD 4.1.1 through 4.3 with the PARANOID ACL option enabled does not properly check the result of a reverse DNS lookup which could allow remote attackers to bypass intended access restrictions via DNS spoofing.

Reference

ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:56.tcp_wrappers.asc http://www.osvdb.org/5454