Description
Apache before 1.3.24, when writing to the log file, records a spoofed hostname from the reverse lookup of an IP address, even when a double-reverse lookup fails, which allows remote attackers to hide the original source of activities.
Remediation
References
Related Vulnerabilities
Apache HTTP Server Other Vulnerability (CVE-2003-0083)
WordPress Plugin WPS Cleaner Multiple Cross-Site Request Forgery Vulnerabilities (1.4.4)
b2evolution Other Vulnerability (CVE-2007-2681)
Oracle JRE CVE-2013-5820 Vulnerability (CVE-2013-5820)
WordPress Plugin Broken Link Manager Cross-Site Scripting (0.5.5)