Unrated severityNVD Advisory· Published Aug 14, 2007· Updated Jun 16, 2026

CVE-2007-4322

Description

BlockHosts before 2.0.4 does not properly parse (1) sshd and (2) vsftpd log files, which allows remote attackers to add arbitrary deny entries to the /etc/hosts.allow file and cause a denial of service by adding arbitrary IP addresses to a daemon log file, as demonstrated by connecting through ssh with a client protocol version identification containing an IP address string, or connecting through ftp with a username containing an IP address string, different vectors than CVE-2007-2765.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Ac Zoom/Blockhosts
cpe:2.3:a:ac_zoom:blockhosts:2.0.4:*:*:*:*:*:*:*
BlockHosts/BlockHostsllm-create
Range: <2.0.4

Patches

Vulnerability mechanics

References

osvdb.org/36515nvd
www.aczoom.com/tools/blockhosts/CHANGESnvd
www.ossec.net/en/attacking-loganalysis.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000