Signature Detail

APP: iSCSI target Multiple Implementations Format String Code Execution

This signature detects attempts to exploit a known format string vulnerability in multiple implementations iSCSI target. iSCSI, an abbreviation of Internet Small Computer System Interface, is an Internet Protocol (IP)-based storage networking standard for linking data storage facilities. It can be leveraged by remote unauthenticated attackers to inject and execute arbitrary code on a vulnerable system.

Extended Description

iSCSI Enterprise Target and tgt are prone to multiple format-string vulnerabilities because they fail to properly sanitize user-supplied input before passing it as the format specifier to a formatted-printing function. An attacker may exploit these issues to execute arbitrary code in the context of the vulnerable application. Failed exploit attempts will result in a denial-of-service condition. Other attacks may also be possible, including data loss or corruption.

Affected Products

• Debian Linux 5.0
• Debian Linux 5.0 Alpha
• Debian Linux 5.0 Amd64
• Debian Linux 5.0 Arm
• Debian Linux 5.0 Armel
• Debian Linux 5.0 Hppa
• Debian Linux 5.0 Ia-32
• Debian Linux 5.0 Ia-64
• Debian Linux 5.0 M68k
• Debian Linux 5.0 Mips
• Debian Linux 5.0 Mipsel
• Debian Linux 5.0 Powerpc
• Debian Linux 5.0 S/390
• Debian Linux 5.0 Sparc
• Gentoo Linux
• iSCSI Enterprise Target 0.4.15
• iSCSI Enterprise Target 0.4.16
• Mandriva Enterprise Server 5
• Mandriva Enterprise Server 5 X86 64
• Red Hat Cluster-Storage Server 5
• Red Hat Enterprise Linux 5 Server
• Red Hat Fedora 11
• Red Hat Fedora 12
• Slackware Linux 12.2
• Slackware Linux 13.0
• Slackware Linux 13.0 X86 64
• Slackware Linux -Current
• Slackware Linux X86 64 -Current
• tgt Project Linux SCSI target framework (tgt) 0.9.5

References

• BugTraq: 39127
• CVE: CVE-2010-0743