CVE-2010-2221
Vulnerability from cvelistv5
Published
2010-07-08 18:00
Modified
2024-08-07 02:25
Severity ?
EPSS score ?
Summary
Multiple buffer overflows in the iSNS implementation in isns.c in (1) Linux SCSI target framework (aka tgt or scsi-target-utils) before 1.0.6, (2) iSCSI Enterprise Target (aka iscsitarget or IET) 1.4.20.1 and earlier, and (3) Generic SCSI Target Subsystem for Linux (aka SCST or iscsi-scst) 1.0.1.1 and earlier allow remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via (a) a long iSCSI Name string in an SCN message or (b) an invalid PDU.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T02:25:07.220Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://scst.svn.sourceforge.net/viewvc/scst?view=revision\u0026revision=1793"
},
{
"name": "20100702 TELUS Security Labs VR - iSCSI target Multiple Implementations iSNS Stack Buffer Overflow",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://archives.neohapsis.com/archives/bugtraq/2010-07/0022.html"
},
{
"name": "ADV-2010-1760",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2010/1760"
},
{
"name": "20100702 TELUS Security Labs VR - iSCSI target Multiple Implementations iSNS Stack Buffer Overflow",
"tags": [
"mailing-list",
"x_refsource_FULLDISC",
"x_transferred"
],
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-07/0058.html"
},
{
"name": "65992",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/65992"
},
{
"name": "MDVSA-2010:131",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:131"
},
{
"name": "65990",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/65990"
},
{
"name": "41327",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/41327"
},
{
"name": "RHSA-2010:0518",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2010-0518.html"
},
{
"name": "65991",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/65991"
},
{
"name": "[iscsitarget-devel] 20100701 [patch] fix iSNS bounds checking",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://sourceforge.net/mailarchive/forum.php?thread_name=E2BB8074E5500C42984D980D4BD78EF904075006%40MFG-NYC-EXCH2.mfg.prv\u0026forum_name=iscsitarget-devel"
},
{
"name": "40485",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/40485"
},
{
"name": "[stgt] 20100701 1.0.6 released",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://lists.wpkg.org/pipermail/stgt/2010-July/003858.html"
},
{
"name": "SUSE-SR:2010:017",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=593877"
},
{
"name": "40494",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/40494"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://scst.svn.sourceforge.net/viewvc/scst/trunk/iscsi-scst/usr/isns.c?r1=1793\u0026r2=1792\u0026pathrev=1793"
},
{
"name": "ADV-2010-1786",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2010/1786"
},
{
"name": "1024175",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1024175"
},
{
"name": "40495",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/40495"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2010-06-28T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Multiple buffer overflows in the iSNS implementation in isns.c in (1) Linux SCSI target framework (aka tgt or scsi-target-utils) before 1.0.6, (2) iSCSI Enterprise Target (aka iscsitarget or IET) 1.4.20.1 and earlier, and (3) Generic SCSI Target Subsystem for Linux (aka SCST or iscsi-scst) 1.0.1.1 and earlier allow remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via (a) a long iSCSI Name string in an SCN message or (b) an invalid PDU."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2010-07-15T09:00:00",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://scst.svn.sourceforge.net/viewvc/scst?view=revision\u0026revision=1793"
},
{
"name": "20100702 TELUS Security Labs VR - iSCSI target Multiple Implementations iSNS Stack Buffer Overflow",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://archives.neohapsis.com/archives/bugtraq/2010-07/0022.html"
},
{
"name": "ADV-2010-1760",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2010/1760"
},
{
"name": "20100702 TELUS Security Labs VR - iSCSI target Multiple Implementations iSNS Stack Buffer Overflow",
"tags": [
"mailing-list",
"x_refsource_FULLDISC"
],
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-07/0058.html"
},
{
"name": "65992",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/65992"
},
{
"name": "MDVSA-2010:131",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:131"
},
{
"name": "65990",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/65990"
},
{
"name": "41327",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/41327"
},
{
"name": "RHSA-2010:0518",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2010-0518.html"
},
{
"name": "65991",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/65991"
},
{
"name": "[iscsitarget-devel] 20100701 [patch] fix iSNS bounds checking",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://sourceforge.net/mailarchive/forum.php?thread_name=E2BB8074E5500C42984D980D4BD78EF904075006%40MFG-NYC-EXCH2.mfg.prv\u0026forum_name=iscsitarget-devel"
},
{
"name": "40485",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/40485"
},
{
"name": "[stgt] 20100701 1.0.6 released",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://lists.wpkg.org/pipermail/stgt/2010-July/003858.html"
},
{
"name": "SUSE-SR:2010:017",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=593877"
},
{
"name": "40494",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/40494"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://scst.svn.sourceforge.net/viewvc/scst/trunk/iscsi-scst/usr/isns.c?r1=1793\u0026r2=1792\u0026pathrev=1793"
},
{
"name": "ADV-2010-1786",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2010/1786"
},
{
"name": "1024175",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1024175"
},
{
"name": "40495",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/40495"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2010-2221",
"datePublished": "2010-07-08T18:00:00",
"dateReserved": "2010-06-09T00:00:00",
"dateUpdated": "2024-08-07T02:25:07.220Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2010-2221\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2010-07-08T18:30:00.907\",\"lastModified\":\"2024-11-21T01:16:10.883\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Multiple buffer overflows in the iSNS implementation in isns.c in (1) Linux SCSI target framework (aka tgt or scsi-target-utils) before 1.0.6, (2) iSCSI Enterprise Target (aka iscsitarget or IET) 1.4.20.1 and earlier, and (3) Generic SCSI Target Subsystem for Linux (aka SCST or iscsi-scst) 1.0.1.1 and earlier allow remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via (a) a long iSCSI Name string in an SCN message or (b) an invalid PDU.\"},{\"lang\":\"es\",\"value\":\"M\u00faltiples desbordamientos de b\u00fafer en la implementaci\u00f3n iSNS en isns.c en (1) Linux SCSI target framework (alias tgt o scsi-target-utils) anterior a v1.0.6, (2) iSCSI Enterprise Target (alias iscsitarget or IET) v1.4.20.1 y anteriores, y (3) Generic SCSI Target Subsystem for Linux (alias SCST or iscsi-scst) v1.0.1.1 y anteriores permite a atacantes remotos provocar una denegaci\u00f3n de servicio (corrupci\u00f3n de memoria y cuelgue del demonio) o posiblemente ejecutar c\u00f3digo arbitrario a trav\u00e9s de (a) una cadena de nombre iSCSI largo en un mensaje SCN o (b) un PDU inv\u00e1lido.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zaal:tgt:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.0.5\",\"matchCriteriaId\":\"F6ED33EC-4BA9-4F13-BF44-CF5BC683C9CA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zaal:tgt:0.9.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9432FC9D-F4C3-489F-8F40-ACFE3F2F913E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zaal:tgt:1.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"10650430-4013-4932-9B0D-548B335AB776\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zaal:tgt:1.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"95C41F32-2D11-4577-9AB3-3E8FF703164A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zaal:tgt:1.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FCB267C5-AD43-4E4C-8639-4B3A69AADC99\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zaal:tgt:1.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8DACB776-1C50-458F-A062-21271A039EF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zaal:tgt:1.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"52C89B83-9C97-494F-961D-226C5808AD16\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"155AD4FB-E527-4103-BCEF-801B653DEA37\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.4.20\",\"matchCriteriaId\":\"8EC28CD2-2A3E-450F-B1B6-B9AE76CD58CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"070A8F63-74EC-45B6-9E3A-49E168831CD7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BEDBF14B-C4E2-4807-8AE4-04C5C74A9103\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5A418E0B-A202-4F45-8A3E-9CE9C2276E93\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3871CAE-1334-46CF-938D-3BA734DA4EC1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0273C88A-903C-4E7B-8DAF-99CC7F54FA36\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.2.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C36FD91D-C7D5-4624-9908-E914BFE9EFDD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.2.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E522858E-FC70-4863-BAEC-48BD683431FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.2.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F368119-5F77-4F90-B699-060A2390C743\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2407E59F-E349-4334-8B0D-8ECC37DF6F1F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"28DBD446-065B-48B8-BA84-2BA8696F846A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"58B93327-B705-4D89-90F9-BBCF116675AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"92511964-6F24-470A-BC66-8D04F1761D3B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.3.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"597A39BF-EC98-4E60-8D92-347066275743\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"906011E5-3C94-43CF-9808-E2CC1029D463\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.3.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"45E98D0E-64DB-4CC0-A390-720D59BF96D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.3.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A63A3A1F-F25D-4C31-A969-465808892D69\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.3.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8C8E822-3C4C-4887-937D-C6C0ED99A173\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0E7810B1-634E-4471-98B2-8C61B915CE21\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"762953AB-E7B7-4B92-8B90-F2A3ECB52CC1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C2B148C5-21FC-4287-B984-0B3C447BA775\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2A54B06A-57DC-4B2D-9988-E8ADE4AABC9B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.4.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E4BEC42A-F9DE-4256-8B1F-601AD737E0FE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.4.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6A30DC66-FB34-46B8-BAB7-FA35B51EFAB2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.4.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FAA40BC5-984A-4CF4-B46E-2FF9A32FAE22\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.4.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0D7B84D8-DFCB-4602-A133-1EAEE38EBEB8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.4.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"53419B63-B995-4218-948B-67B2955555AF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.4.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E67CBEB0-2849-481D-9372-DCEDDAE24518\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.4.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EB838058-95B7-4624-AC31-4C041D394A8E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.4.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AC9AD8F6-4D75-4828-9944-E7821E1F5CB9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.4.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AAC345FF-492F-44A0-8D6C-3D3FC4EBAAC7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.4.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3843296-FD7A-44C6-AC3F-155587863320\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.4.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"572DEE8B-C9A2-4F33-8073-EBF429A2FAA4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.4.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"191B87E6-9DB8-4015-83FB-627C127AD491\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.4.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3FA49BB2-45D7-4247-974F-D45037D325A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:0.4.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2E5C743A-DDEF-4A59-BD59-37019AB6C7CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:1.4.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DDA2941A-361A-4C29-B0CB-971ECCA2E1A7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arne_redlich_\\\\\u0026_ross_walker:iscsitarget:1.4.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"29DAB457-CBFF-422F-B70E-DBF0F6FE1CD9\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vladislav_bolkhovitin:generic_scsi_target_subsystem:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.0.1\",\"matchCriteriaId\":\"1880CEA6-0EDF-4287-BBEB-1B741C2D7D2D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vladislav_bolkhovitin:generic_scsi_target_subsystem:0.9.0a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3F530E9D-B602-46BF-A7BE-D81C64446EB9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vladislav_bolkhovitin:generic_scsi_target_subsystem:0.9.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA14555B-340A-47C2-B577-00110791E933\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vladislav_bolkhovitin:generic_scsi_target_subsystem:0.9.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9F3FB5FA-9533-49EA-A577-F7B06E636EE3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vladislav_bolkhovitin:generic_scsi_target_subsystem:0.9.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"085904E8-5955-4216-8380-F4FCF669FF9F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vladislav_bolkhovitin:generic_scsi_target_subsystem:0.9.3:pre1:*:*:*:*:*:*\",\"matchCriteriaId\":\"E5F2A5FB-767F-419E-972A-FF8961704FA5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vladislav_bolkhovitin:generic_scsi_target_subsystem:0.9.3:pre2:*:*:*:*:*:*\",\"matchCriteriaId\":\"1DF32A33-B344-4518-A731-375522269976\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vladislav_bolkhovitin:generic_scsi_target_subsystem:0.9.3:pre4:*:*:*:*:*:*\",\"matchCriteriaId\":\"86BDFE67-AE54-4F1C-ADA4-7F5B01E5CEA9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vladislav_bolkhovitin:generic_scsi_target_subsystem:0.9.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"31B056DF-7A76-4C83-842B-1C0CEEA94B40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vladislav_bolkhovitin:generic_scsi_target_subsystem:0.9.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"82A6E0F2-F0B7-4C51-81F8-B828AE2380EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vladislav_bolkhovitin:generic_scsi_target_subsystem:0.9.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E20D280-2319-43CC-87A7-E6D0AAD5C80A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vladislav_bolkhovitin:generic_scsi_target_subsystem:0.9.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A435084-5FFC-4DBE-A9FF-D0417229AB17\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vladislav_bolkhovitin:generic_scsi_target_subsystem:1.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DFE0B048-84D3-493B-865E-FD12DE84574F\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"155AD4FB-E527-4103-BCEF-801B653DEA37\"}]}]}],\"references\":[{\"url\":\"http://archives.neohapsis.com/archives/bugtraq/2010-07/0022.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://archives.neohapsis.com/archives/fulldisclosure/2010-07/0058.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.wpkg.org/pipermail/stgt/2010-July/003858.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://scst.svn.sourceforge.net/viewvc/scst/trunk/iscsi-scst/usr/isns.c?r1=1793\u0026r2=1792\u0026pathrev=1793\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://scst.svn.sourceforge.net/viewvc/scst?view=revision\u0026revision=1793\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/40485\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/40494\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/40495\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://sourceforge.net/mailarchive/forum.php?thread_name=E2BB8074E5500C42984D980D4BD78EF904075006%40MFG-NYC-EXCH2.mfg.prv\u0026forum_name=iscsitarget-devel\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2010:131\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.osvdb.org/65990\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.osvdb.org/65991\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.osvdb.org/65992\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2010-0518.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/bid/41327\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securitytracker.com/id?1024175\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2010/1760\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2010/1786\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=593877\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://archives.neohapsis.com/archives/bugtraq/2010-07/0022.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://archives.neohapsis.com/archives/fulldisclosure/2010-07/0058.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.wpkg.org/pipermail/stgt/2010-July/003858.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://scst.svn.sourceforge.net/viewvc/scst/trunk/iscsi-scst/usr/isns.c?r1=1793\u0026r2=1792\u0026pathrev=1793\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://scst.svn.sourceforge.net/viewvc/scst?view=revision\u0026revision=1793\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/40485\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/40494\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/40495\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://sourceforge.net/mailarchive/forum.php?thread_name=E2BB8074E5500C42984D980D4BD78EF904075006%40MFG-NYC-EXCH2.mfg.prv\u0026forum_name=iscsitarget-devel\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2010:131\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.osvdb.org/65990\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.osvdb.org/65991\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.osvdb.org/65992\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2010-0518.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/41327\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id?1024175\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2010/1760\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2010/1786\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=593877\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.