Blahz-DNS does not properly authenticate users.
Blahz-DNS does not properly authenticate users. As a result, an attacker can gain access to various configuration pages. For more detailed information, please see the ppp-design advisory.
An attacker can gain access to various configuration pages and make modifications to DNS information.
Upgrade to version to .25.
Vendor| Status| Date Notified| Date Updated
Mike Roest| | -| 02 May 2002
If you are a vendor and your product is affected, let us know.
Group | Score | Vector
Base | N/A | N/A
Temporal | N/A | N/A
Environmental | N/A | N/A
Thanks to ppp-design for reporting this vulnerability.
This document was written by Ian A. Finlay.