NVD

Id
47694  
Name
CVE-2009-0362  
Description
filter.d/wuftpd.conf in Fail2ban 0.8.3 uses an incorrect regular expression that allows remote attackers to cause a denial of service (forced authentication failures) via a crafted reverse-resolved DNS name (rhost) entry that contains a substring that is interpreted as an IP address, a different vulnerability than CVE-2007-4321.  
Reject
 
CVSS Version
2  
CVSS Score
4  
Severity
Medium  
CVSS Base Score
4  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:N/I:N/A:P)  
Pub Date
2017-01-07  
Published
2009-02-12  
Modified Date
2009-02-13  
Seq
2009-0362  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
239026 47694 CVE-2009-0362 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=514163  View
239027 47694 CVE-2009-0362 33734  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
42198 JVNDB-2009-003205 Fail2ban の filter.d/wuftpd.conf におけるサービス運用妨害 (DoS) の脆弱性 Fail2ban の filter.d/wuftpd.conf は、誤った正規表現を使用するため、サービス運用妨害 (強制認証の失敗) 状態となる脆弱性が存在します。 CVE-2009-0362 37793 CVE-2009-0362 47694 4 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-003205.html 2009-02-12 2012-06-26 View