Lucene search

RedhatCVE-2011-0001

HistoryMar 15, 2011 - 5:55 p.m.

CVE-2011-0001

2011-03-1517:55:02

CWE-399

redhat

web.nvd.nist.gov

cve-2011-0001

double free vulnerability

iscsi_rx_handler

tgt daemon

scsi-target-utils

remote attackers

denial of service

memory corruption

buffer overflow

iscsi login

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

8.1

Confidence

High

EPSS

0.124

Percentile

95.4%

JSON

Double free vulnerability in the iscsi_rx_handler function (usr/iscsi/iscsid.c) in the tgt daemon (tgtd) in Linux SCSI target framework (tgt) before 1.0.14, aka scsi-target-utils, allows remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via unknown vectors related to a buffer overflow during iscsi login. NOTE: some of these details are obtained from third party information.

Affected configurations

Nvd

Node

zaaltgtRange≤1.0.13

zaaltgtMatch0.9.5

zaaltgtMatch1.0.0

zaaltgtMatch1.0.1

zaaltgtMatch1.0.2

zaaltgtMatch1.0.3

zaaltgtMatch1.0.4

zaaltgtMatch1.0.5

zaaltgtMatch1.0.6

zaaltgtMatch1.0.7

zaaltgtMatch1.0.8

zaaltgtMatch1.0.9

zaaltgtMatch1.0.10

zaaltgtMatch1.0.11

zaaltgtMatch1.0.12

VendorProductVersionCPE
zaaltgt*cpe:2.3:a:zaal:tgt:*:*:*:*:*:*:*:*
zaaltgt0.9.5cpe:2.3:a:zaal:tgt:0.9.5:*:*:*:*:*:*:*
zaaltgt1.0.0cpe:2.3:a:zaal:tgt:1.0.0:*:*:*:*:*:*:*
zaaltgt1.0.1cpe:2.3:a:zaal:tgt:1.0.1:*:*:*:*:*:*:*
zaaltgt1.0.2cpe:2.3:a:zaal:tgt:1.0.2:*:*:*:*:*:*:*
zaaltgt1.0.3cpe:2.3:a:zaal:tgt:1.0.3:*:*:*:*:*:*:*
zaaltgt1.0.4cpe:2.3:a:zaal:tgt:1.0.4:*:*:*:*:*:*:*
zaaltgt1.0.5cpe:2.3:a:zaal:tgt:1.0.5:*:*:*:*:*:*:*
zaaltgt1.0.6cpe:2.3:a:zaal:tgt:1.0.6:*:*:*:*:*:*:*
zaaltgt1.0.7cpe:2.3:a:zaal:tgt:1.0.7:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
zaal	tgt	*	cpe:2.3:a:zaal:tgt::::::::
zaal	tgt	0.9.5	cpe:2.3:a:zaal:tgt:0.9.5:::::::*
zaal	tgt	1.0.0	cpe:2.3:a:zaal:tgt:1.0.0:::::::*
zaal	tgt	1.0.1	cpe:2.3:a:zaal:tgt:1.0.1:::::::*
zaal	tgt	1.0.2	cpe:2.3:a:zaal:tgt:1.0.2:::::::*
zaal	tgt	1.0.3	cpe:2.3:a:zaal:tgt:1.0.3:::::::*
zaal	tgt	1.0.4	cpe:2.3:a:zaal:tgt:1.0.4:::::::*
zaal	tgt	1.0.5	cpe:2.3:a:zaal:tgt:1.0.5:::::::*
zaal	tgt	1.0.6	cpe:2.3:a:zaal:tgt:1.0.6:::::::*
zaal	tgt	1.0.7	cpe:2.3:a:zaal:tgt:1.0.7:::::::*