iSCSI target Multiple Implementations iSNS Stack Buffer Overflow

Publish date: February 10, 2011
  Severity: MEDIUM
  CVE Identifier: CVE-2010-2221
  Advisory Date: FEB 10, 2011

  DESCRIPTION

Multiple buffer overflows in the iSNS implementation in isns.c in (1) Linux SCSI target framework (aka tgt or scsi-target-utils) before 1.0.6, (2) iSCSI Enterprise Target (aka iscsitarget or IET) 1.4.20.1 and earlier, and (3) Generic SCSI Target Subsystem for Linux (aka SCST or iscsi-scst) 1.0.1.1 and earlier allow remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via (a) a long iSCSI Name string in an SCN message or (b) an invalid PDU.

  TREND MICRO PROTECTION INFORMATION

Trend Micro Deep Security shields networks through Deep Packet Inspection (DPI) rules. Trend Micro customers using OfficeScan with Intrusion Defense Firewall (IDF) plugin are also protected from attacks using these vulnerabilities. Please refer to the filter number and filter name when applying appropriate DPI and/or IDF rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1004269
  Trend Micro Deep Security DPI Rule Name: 1004269 - iSCSI Target Multiple Implementations iSNS Stack Buffer Overflow

  AFFECTED SOFTWARE AND VERSION

  • arne_redlich_&_ross_walker iscsitarget 0.1.0
  • arne_redlich_&_ross_walker iscsitarget 0.2.0
  • arne_redlich_&_ross_walker iscsitarget 0.2.1
  • arne_redlich_&_ross_walker iscsitarget 0.2.2
  • arne_redlich_&_ross_walker iscsitarget 0.2.3
  • arne_redlich_&_ross_walker iscsitarget 0.2.4
  • arne_redlich_&_ross_walker iscsitarget 0.2.5
  • arne_redlich_&_ross_walker iscsitarget 0.2.6
  • arne_redlich_&_ross_walker iscsitarget 0.3.0
  • arne_redlich_&_ross_walker iscsitarget 0.3.1
  • arne_redlich_&_ross_walker iscsitarget 0.3.2
  • arne_redlich_&_ross_walker iscsitarget 0.3.3
  • arne_redlich_&_ross_walker iscsitarget 0.3.4
  • arne_redlich_&_ross_walker iscsitarget 0.3.5
  • arne_redlich_&_ross_walker iscsitarget 0.3.6
  • arne_redlich_&_ross_walker iscsitarget 0.3.7
  • arne_redlich_&_ross_walker iscsitarget 0.3.8
  • arne_redlich_&_ross_walker iscsitarget 0.4.0
  • arne_redlich_&_ross_walker iscsitarget 0.4.1
  • arne_redlich_&_ross_walker iscsitarget 0.4.10
  • arne_redlich_&_ross_walker iscsitarget 0.4.11
  • arne_redlich_&_ross_walker iscsitarget 0.4.12
  • arne_redlich_&_ross_walker iscsitarget 0.4.13
  • arne_redlich_&_ross_walker iscsitarget 0.4.14
  • arne_redlich_&_ross_walker iscsitarget 0.4.15
  • arne_redlich_&_ross_walker iscsitarget 0.4.16
  • arne_redlich_&_ross_walker iscsitarget 0.4.17
  • arne_redlich_&_ross_walker iscsitarget 0.4.2
  • arne_redlich_&_ross_walker iscsitarget 0.4.3
  • arne_redlich_&_ross_walker iscsitarget 0.4.4
  • arne_redlich_&_ross_walker iscsitarget 0.4.5
  • arne_redlich_&_ross_walker iscsitarget 0.4.6
  • arne_redlich_&_ross_walker iscsitarget 0.4.7
  • arne_redlich_&_ross_walker iscsitarget 0.4.8
  • arne_redlich_&_ross_walker iscsitarget 0.4.9
  • arne_redlich_&_ross_walker iscsitarget 1.4.18
  • arne_redlich_&_ross_walker iscsitarget 1.4.19
  • arne_redlich_&_ross_walker iscsitarget 1.4.20
  • vladislav_bolkhovitin generic_scsi_target_subsystem 0.9.0a
  • vladislav_bolkhovitin generic_scsi_target_subsystem 0.9.1
  • vladislav_bolkhovitin generic_scsi_target_subsystem 0.9.2
  • vladislav_bolkhovitin generic_scsi_target_subsystem 0.9.3
  • vladislav_bolkhovitin generic_scsi_target_subsystem 0.9.4
  • vladislav_bolkhovitin generic_scsi_target_subsystem 0.9.5
  • vladislav_bolkhovitin generic_scsi_target_subsystem 0.9.5.1
  • vladislav_bolkhovitin generic_scsi_target_subsystem 0.9.5.2
  • vladislav_bolkhovitin generic_scsi_target_subsystem 1.0.0
  • vladislav_bolkhovitin generic_scsi_target_subsystem 1.0.1
  • zaal tgt 0.9.5
  • zaal tgt 1.0.0
  • zaal tgt 1.0.1
  • zaal tgt 1.0.2
  • zaal tgt 1.0.3
  • zaal tgt 1.0.4
  • zaal tgt 1.0.5

Featured Stories