VULHUB ™

A problem exists in tcp_wrappers that may cause some checks to fail when the 'PARANOID' ACL option is enabled in the configuration file. The 'PARANOID' ACL option is used to cause tcp_wrappers to drop requests from any host that has a name that does not match it's address. The problem is the result of a flawed check for a numeric result during reverse DNS lookup. If an attacker is able to influence the results of reverse DNS lookups, it may be able to bypass these restrictions by impersonating a trusted host. This may allow an attacker to bypass the host access control rules on a vulnerable system, possibly leading to further attacks against the host.

A problem exists in tcp_wrappers that may cause some checks to fail when the 'PARANOID' ACL option is enabled in the configuration file. The 'PARANOID' ACL option is used to cause tcp_wrappers to drop requests from any host that has a name that does not match it's address. The problem is the result of a flawed check for a numeric result during reverse DNS lookup. If an attacker is able to influence the results of reverse DNS lookups, it may be able to bypass these restrictions by impersonating a trusted host. This may allow an attacker to bypass the host access control rules on a vulnerable system, possibly leading to further attacks against the host.