Signature Detail

APP: iSCSI target Multiple Implementations iSNS Stack Buffer Overflow

This signature detects attempts to exploit a known stack buffer overflow vulnerability in iSCSI Enterprise. It is caused by insufficient boundary checking while processing SCN messages. A remote attacker can leverage this to inject and execute arbitrary code on a vulnerable system.

Extended Description

Multiple implementations of iSCSI Enterprise Target are prone to a buffer-overflow vulnerability because the application fails to perform adequate boundary-checks on user-supplied data. An attacker may exploit this issue to execute arbitrary code in the context of the vulnerable application. Failed exploit attempts will result in a denial-of-service condition. The following products are affected: iSCSI Enterprise Target 1.4.20.1 and prior Generic SCSI Target Subsystem for Linux 1.0.1.1 and prior Linux SCSI target framework 1.0 and prior

Affected Products

• Generic SCSI Target Subsystem for Linux 1.0.1.1
• Generic SCSI Target Subsystem for Linux
• iSCSI Enterprise Target 0.4.15
• iSCSI Enterprise Target 0.4.16
• iSCSI Enterprise Target 0.4.19
• iSCSI Enterprise Target 1.4.0.21
• Mandriva Enterprise Server 5
• Mandriva Enterprise Server 5 X86 64
• Red Hat Cluster-Storage Server 5
• tgt Project Linux SCSI target framework 1.0.5
• tgt Project Linux SCSI target framework
• tgt Project Linux SCSI target framework (tgt) 0.9.5
• Ubuntu Ubuntu Linux 10.10 amd64
• Ubuntu Ubuntu Linux 10.10 ARM
• Ubuntu Ubuntu Linux 10.10 i386
• Ubuntu Ubuntu Linux 10.10 powerpc
• Ubuntu Ubuntu Linux 11.04 amd64
• Ubuntu Ubuntu Linux 11.04 ARM
• Ubuntu Ubuntu Linux 11.04 i386
• Ubuntu Ubuntu Linux 11.04 powerpc

References

• BugTraq: 41327
• CVE: CVE-2010-2221