Honeyd before 0.8 replies to TCP packets with the SYN and RST flags set, which allows remote attackers to identify IP addresses that are being simulated by Honeyd.
https://exchange.xforce.ibmcloud.com/vulnerabilities/14905
http://www.securitytracker.com/id?1008818
http://www.securityfocus.com/bid/9464
http://secunia.com/advisories/10695
http://secunia.com/advisories/10694