CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2007-4322
https://notcve.org/view.php?id=CVE-2007-4322
14 Aug 2007 — BlockHosts before 2.0.4 does not properly parse (1) sshd and (2) vsftpd log files, which allows remote attackers to add arbitrary deny entries to the /etc/hosts.allow file and cause a denial of service by adding arbitrary IP addresses to a daemon log file, as demonstrated by connecting through ssh with a client protocol version identification containing an IP address string, or connecting through ftp with a username containing an IP address string, different vectors than CVE-2007-2765. BlockHosts anterior a... • http://osvdb.org/36515 •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2007-2765
https://notcve.org/view.php?id=CVE-2007-2765
18 May 2007 — blockhosts.py in BlockHosts before 2.0.3 does not properly parse daemon log files, which allows remote attackers to add arbitrary deny entries to the /etc/hosts.allow file and cause a denial of service by adding arbitrary IP addresses to a daemon log file, as demonstrated by logging in through ssh using a login name containing certain strings with an IP address, which is not properly handled by a regular expression, a related issue to CVE-2006-6301. El blockhosts.py en el BlockHosts anterior al 2.0.3 no ana... • http://osvdb.org/36516 •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2004-0680
https://notcve.org/view.php?id=CVE-2004-0680
13 Jul 2004 — Zoom X3 ADSL modem has a terminal running on port 254 that can be accessed using the default HTML management password, even if the password has been changed for the HTTP interface, which could allow remote attackers to gain unauthorized access. El módem ADSL Zoom X3 tiene un terminal en ejecución por el puerto 254 que puede ser accedido utilizando la contraseña de gestión HTML por defecto, incluso aunque haya sido cambiada a través del interfaz HTML, lo que podría obtener acceso no autorizado a atacantes re... • http://marc.info/?l=bugtraq&m=108915255520924&w=2 •