Vulnerability Description
Open Projects Network Internet Relay Chat (IRC) daemon u2.10.05.18 does not perform a double-reverse DNS lookup, which allows remote attackers to spoof any valid hostname on the Internet. NOTE: a followup post suggests that this is not an issue in the daemon.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Open Projects Network | Open Projects Network Ircd | u2.10.05.18 |
References
- http://www.securityfocus.com/archive/1/219388/2003-04-27/2003-05-03/2
- http://www.securityfocus.com/archive/1/220380
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7283
- http://www.securityfocus.com/archive/1/219388/2003-04-27/2003-05-03/2
- http://www.securityfocus.com/archive/1/220380
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7283
FAQ
What is CVE-2001-1488?
CVE-2001-1488 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Open Projects Network Internet Relay Chat (IRC) daemon u2.10.05.18 does not perform a double-reverse DNS lookup, which allows remote attackers to spoof any valid hostname on the Internet. NOTE: a fol...
How severe is CVE-2001-1488?
CVE-2001-1488 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-1488?
Check the references section above for vendor advisories and patch information. Affected products include: Open Projects Network Open Projects Network Ircd.