Vulnerability Details CVE-2001-1488
Open Projects Network Internet Relay Chat (IRC) daemon u2.10.05.18 does not perform a double-reverse DNS lookup, which allows remote attackers to spoof any valid hostname on the Internet. NOTE: a followup post suggests that this is not an issue in the daemon.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 58.7%
CVSS Severity
CVSS v2 Score 5.0
References
- http://www.securityfocus.com/archive/1/219388/2003-04-27/2003-05-03/2
- http://www.securityfocus.com/archive/1/220380
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7283
- http://www.securityfocus.com/archive/1/219388/2003-04-27/2003-05-03/2
- http://www.securityfocus.com/archive/1/220380
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7283
Products affected by CVE-2001-1488
-
cpe:2.3:a:open_projects_network:open_projects_network_ircd:u2.10.05.18