Description
Apache before 1.3.24, when writing to the log file, records a spoofed hostname from the reverse lookup of an IP address, even when a double-reverse lookup fails, which allows remote attackers to hide the original source of activities.
Remediation
References
Related Vulnerabilities
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5651)
WordPress Plugin Login as User or Customer Privilege Escalation (3.2)
WordPress Plugin GD Rating System Cross-Site Scripting (2.0.2)
WordPress Plugin Yasr-Yet Another Stars Rating SQL Injection (0.9.0)
Oracle Database Server CVE-2010-0071 Vulnerability (CVE-2010-0071)