CVE-2002-2103

Apache before 1.3.24, when writing to the log file, records a spoofed hostname from the reverse lookup of an IP address, even when a double-reverse lookup fails, which allows remote attackers to hide the original source of activities.

Date published : 2005-08-05

http://www.securityfocus.com/bid/4358

http://www.apache.org/dist/httpd/CHANGES_1.3