Signature Detail

APP: iSCSI target Multiple Implementations iSNS Stack Buffer Overflow

This signature detects attempts to exploit a known stack buffer overflow vulnerability in iSCSI Enterprise. It is caused by insufficient boundary checking while processing SCN messages. A remote attacker can leverage this to inject and execute arbitrary code on a vulnerable system.

Extended Description

Multiple implementations of iSCSI Enterprise Target are prone to a buffer-overflow vulnerability because the application fails to perform adequate boundary-checks on user-supplied data. An attacker may exploit this issue to execute arbitrary code in the context of the vulnerable application. Failed exploit attempts will result in a denial-of-service condition. The following products are affected: iSCSI Enterprise Target 1.4.20.1 and prior Generic SCSI Target Subsystem for Linux 1.0.1.1 and prior Linux SCSI target framework 1.0 and prior

Affected Products

• Generic_scsi_target_subsystem_for_linux generic_scsi_target_subsystem_for_linux 1.0.1.1
• Generic_scsi_target_subsystem_for_linux generic_scsi_target_subsystem_for_linux
• Iscsi_enterprise_target iscsi_enterprise_target 0.4.15
• Iscsi_enterprise_target iscsi_enterprise_target 0.4.16
• Iscsi_enterprise_target iscsi_enterprise_target 0.4.19
• Iscsi_enterprise_target iscsi_enterprise_target 1.4.0.21
• Mandriva enterprise_server 5
• Mandriva enterprise_server 5 X86 64
• Red_hat cluster-storage_server 5
• Tgt_project linux_scsi_target_framework 1.0.5
• Tgt_project linux_scsi_target_framework
• Tgt_project linux_scsi_target_framework_(tgt) 0.9.5
• Ubuntu ubuntu_linux 10.10 amd64
• Ubuntu ubuntu_linux 10.10 ARM
• Ubuntu ubuntu_linux 10.10 i386
• Ubuntu ubuntu_linux 10.10 powerpc
• Ubuntu ubuntu_linux 11.04 amd64
• Ubuntu ubuntu_linux 11.04 ARM
• Ubuntu ubuntu_linux 11.04 i386
• Ubuntu ubuntu_linux 11.04 powerpc

References

• BugTraq: 41327
• CVE: CVE-2010-2221