Name of the Vulnerable Software and Affected Versions: identd (affected versions not specified)

Description: The issue arises from the ident protocol as defined in RFC 1413, where the unique identifying tuple includes not only the ports but also both addresses. Without considering the addresses, the information becomes non-unique and public. This can lead to incorrect ident information being returned when multiple connections use the same local port number but differ in addresses. Furthermore, not checking the connection address makes the information public, and due to the limited range of local ports and the common use of specific remote ports (such as 6667 or 6697), it becomes easy to scan and obtain a list of idents.

Recommendations: To prevent this issue, consider disabling identd until a non-vulnerable version is available. Upgrade to a non-vulnerable version of identd to resolve the issue.