CVE-2013-1841
Net-Server, when the reverse-lookups option is enabled, does not check if the hostname resolves to the source IP address, which might allow remote attackers to bypass ACL restrictions via the hostname parameter.
View on NVDSeverity
N/A
EPSS
Probability of exploitation (next 30 days): 0.0133 (1.3%)
Percentile: 80.0%
EPSS: 2026-05-06
Affects
seamons:net-serverTechnical description
Net-Server, when the reverse-lookups option is enabled, does not check if the hostname resolves to the source IP address, which might allow remote attackers to bypass ACL restrictions via the hostname parameter.
Published: 6/13/2014, 2:55:11 PM
Last modified: 5/6/2026, 10:30:45 PM
References
- http://www.openwall.com/lists/oss-security/2013/03/04/10
- http://www.openwall.com/lists/oss-security/2013/03/12/2
- http://www.securityfocus.com/bid/58309
- https://bugzilla.redhat.com/show_bug.cgi?id=920683
- https://exchange.xforce.ibmcloud.com/vulnerabilities/82900
- http://www.openwall.com/lists/oss-security/2013/03/04/10
- http://www.openwall.com/lists/oss-security/2013/03/12/2
- http://www.securityfocus.com/bid/58309