Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Sun ONE (aka iPlanet) Web Server 6 on Windows, when DNS resolution is enabled for client IP addresses, uses a logging format that does not identify whether a dotted quad represents an unresolved IP address, which allows remote attackers to spoof IP addresses via crafted DNS responses containing numerical top-level domains, as demonstrated by a forged 123.123.123.123 domain name, related to an "Inverse Lookup Log Corruption (ILLC)" issue.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Sun ONE Web 服务器 DNS解析 IP地址欺骗漏洞
Vulnerability Description
Sun ONE (也叫iPlanet) Web 服务器,当为客户IP地址启用DNS解析时,使用一个 不确定 未解决的IP, 允许远程攻击者通过特制的包含顶级域名数量的DNS响应,进行IP地址欺骗。已经通过伪造的域名 123.123.123.123 得到论证,可能和“反向 Lookup 日志损坏(ILLC)”问题有关。
CVSS Information
N/A
Vulnerability Type
N/A