AI Score
Confidence
High
EPSS
Percentile
88.9%
Apache before 1.3.24, when writing to the log file, records a spoofed hostname from the reverse lookup of an IP address, even when a double-reverse lookup fails, which allows remote attackers to hide the original source of activities.
www.apache.org/dist/httpd/CHANGES_1.3
www.iss.net/security_center/static/8629.php
www.securityfocus.com/bid/4358