6.9 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
80.2%
ProFTPD 1.2.2rc2, and possibly other versions, does not properly verify reverse-resolved hostnames by performing forward resolution, which allows remote attackers to bypass ACLs or cause an incorrect client hostname to be logged.
distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000450
www.mandriva.com/security/advisories?name=MDKSA-2002:005
www.securityfocus.com/archive/1/212805
www.securityfocus.com/bid/3310
exchange.xforce.ibmcloud.com/vulnerabilities/7126