2 matches found
CVE-2007-2765
CVE-2007-2765 concerns BlockHosts prior to 2.0.3, where improper parsing of daemon logs lets remote attackers add arbitrary entries to /etc/hosts.allow, enabling a denial of service by injecting IPs into a log file. Related entries (e.g., CVE-2007-4322/4323) describe a similar issue affecting Blo...
CVE-2007-4322
BlockHosts vulnerability CVE-2007-4322 affects BlockHosts before 2.0.4 and CVE-2007-2765 affects BlockHosts before 2.0.3. The issue is improper parsing of daemon log files (sshd/vsftpd) that allows remote attackers to inject arbitrary deny entries into /etc/hosts.allow and cause a denial of servi...