xinetd Connection Filtering Via Hostname Vulnerability

A vulnerability exists in versions of xinetd prior to versions and If a hostname is specified to limit access to a service instead of an ip (for instance, specifying 'localhost' instead of, any host which attempts to connect to the service that does not have a reverse record will be able to connect, when they should actually be denied.


Privacy Statement
Copyright 2010, SecurityFocus