Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2011-0001

Опубликовано: 15 мар. 2011
Источник: nvd
CVSS2: 5
EPSS Низкий

Описание

Double free vulnerability in the iscsi_rx_handler function (usr/iscsi/iscsid.c) in the tgt daemon (tgtd) in Linux SCSI target framework (tgt) before 1.0.14, aka scsi-target-utils, allows remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via unknown vectors related to a buffer overflow during iscsi login. NOTE: some of these details are obtained from third party information.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:zaal:tgt:*:*:*:*:*:*:*:*
Версия до 1.0.13 (включая)
cpe:2.3:a:zaal:tgt:0.9.5:*:*:*:*:*:*:*
cpe:2.3:a:zaal:tgt:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:zaal:tgt:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:zaal:tgt:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:zaal:tgt:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:zaal:tgt:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:zaal:tgt:1.0.5:*:*:*:*:*:*:*
cpe:2.3:a:zaal:tgt:1.0.6:*:*:*:*:*:*:*
cpe:2.3:a:zaal:tgt:1.0.7:*:*:*:*:*:*:*
cpe:2.3:a:zaal:tgt:1.0.8:*:*:*:*:*:*:*
cpe:2.3:a:zaal:tgt:1.0.9:*:*:*:*:*:*:*
cpe:2.3:a:zaal:tgt:1.0.10:*:*:*:*:*:*:*
cpe:2.3:a:zaal:tgt:1.0.11:*:*:*:*:*:*:*
cpe:2.3:a:zaal:tgt:1.0.12:*:*:*:*:*:*:*

EPSS

Процентиль: 92%
0.07852
Низкий

5 Medium

CVSS2

Дефекты

CWE-399

Связанные уязвимости

ubuntu логотип

CVE-2011-0001

ubuntu
больше 14 лет назад

Double free vulnerability in the iscsi_rx_handler function (usr/iscsi/iscsid.c) in the tgt daemon (tgtd) in Linux SCSI target framework (tgt) before 1.0.14, aka scsi-target-utils, allows remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via unknown vectors related to a buffer overflow during iscsi login. NOTE: some of these details are obtained from third party information.

redhat логотип

CVE-2011-0001

redhat
больше 14 лет назад

Double free vulnerability in the iscsi_rx_handler function (usr/iscsi/iscsid.c) in the tgt daemon (tgtd) in Linux SCSI target framework (tgt) before 1.0.14, aka scsi-target-utils, allows remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via unknown vectors related to a buffer overflow during iscsi login. NOTE: some of these details are obtained from third party information.

debian логотип

CVE-2011-0001

debian
больше 14 лет назад

Double free vulnerability in the iscsi_rx_handler function (usr/iscsi/ ...

github логотип

GHSA-wm9f-xrfg-h5mx

github
около 3 лет назад

Double free vulnerability in the iscsi_rx_handler function (usr/iscsi/iscsid.c) in the tgt daemon (tgtd) in Linux SCSI target framework (tgt) before 1.0.14, aka scsi-target-utils, allows remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via unknown vectors related to a buffer overflow during iscsi login. NOTE: some of these details are obtained from third party information.

oracle-oval логотип

ELSA-2011-0332

oracle-oval
больше 14 лет назад

ELSA-2011-0332: scsi-target-utils security update (IMPORTANT)

EPSS

Процентиль: 92%
0.07852
Низкий

5 Medium

CVSS2

Дефекты

CWE-399