Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2010-2221

Multiple buffer overflows in the iSNS implementation in isns.c in (1) Linux SCSI target framework (aka tgt or scsi-target-utils) before 1.0.6, (2) iSCSI Enterprise Target (aka iscsitarget or IET) 1.4.20.1 and earlier, and (3) Generic SCSI Target Subsystem for Linux (aka SCST or iscsi-scst) 1.0.1.1 and earlier allow remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via (a) a long iSCSI Name string in an SCN message or (b) an invalid PDU.

  • Published: Jul 8, 2010
  • Updated: Apr 13, 2023
  • CVE: CVE-2010-2221
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:N/A:P

CWEs:

Software From Fixed in
zaal / tgt - 1.0.5.x
zaal / tgt 0.9.5 0.9.5.x
zaal / tgt 1.0.0 1.0.0.x
zaal / tgt 1.0.1 1.0.1.x
zaal / tgt 1.0.2 1.0.2.x
zaal / tgt 1.0.3 1.0.3.x
zaal / tgt 1.0.4 1.0.4.x
arne_redlich_&_ross_walker / iscsitarget 0.4.4 0.4.4.x
arne_redlich_&_ross_walker / iscsitarget 0.4.10 0.4.10.x
arne_redlich_&_ross_walker / iscsitarget 0.2.4 0.2.4.x
arne_redlich_&_ross_walker / iscsitarget 0.3.0 0.3.0.x
arne_redlich_&_ross_walker / iscsitarget 0.3.3 0.3.3.x
arne_redlich_&_ross_walker / iscsitarget 0.4.6 0.4.6.x
arne_redlich_&_ross_walker / iscsitarget 0.4.11 0.4.11.x
arne_redlich_&_ross_walker / iscsitarget 0.4.0 0.4.0.x
arne_redlich_&_ross_walker / iscsitarget 0.4.5 0.4.5.x
arne_redlich_&_ross_walker / iscsitarget 0.4.15 0.4.15.x
arne_redlich_&_ross_walker / iscsitarget 0.4.13 0.4.13.x
arne_redlich_&_ross_walker / iscsitarget 0.4.2 0.4.2.x
arne_redlich_&_ross_walker / iscsitarget 0.2.3 0.2.3.x
arne_redlich_&_ross_walker / iscsitarget 1.4.18 1.4.18.x
arne_redlich_&_ross_walker / iscsitarget 1.4.19 1.4.19.x
arne_redlich_&_ross_walker / iscsitarget 0.4.12 0.4.12.x
arne_redlich_&_ross_walker / iscsitarget 0.2.2 0.2.2.x
arne_redlich_&_ross_walker / iscsitarget 0.3.2 0.3.2.x
arne_redlich_&_ross_walker / iscsitarget 0.4.7 0.4.7.x
arne_redlich_&_ross_walker / iscsitarget 0.2.5 0.2.5.x
arne_redlich_&_ross_walker / iscsitarget - 1.4.20.x
arne_redlich_&_ross_walker / iscsitarget 0.2.1 0.2.1.x
arne_redlich_&_ross_walker / iscsitarget 0.3.8 0.3.8.x
arne_redlich_&_ross_walker / iscsitarget 0.3.1 0.3.1.x
arne_redlich_&_ross_walker / iscsitarget 0.1.0 0.1.0.x
arne_redlich_&_ross_walker / iscsitarget 0.4.17 0.4.17.x
arne_redlich_&_ross_walker / iscsitarget 0.4.1 0.4.1.x
arne_redlich_&_ross_walker / iscsitarget 0.3.4 0.3.4.x
arne_redlich_&_ross_walker / iscsitarget 0.4.14 0.4.14.x
arne_redlich_&_ross_walker / iscsitarget 0.2.0 0.2.0.x
arne_redlich_&_ross_walker / iscsitarget 0.3.6 0.3.6.x
arne_redlich_&_ross_walker / iscsitarget 0.2.6 0.2.6.x
arne_redlich_&_ross_walker / iscsitarget 0.4.3 0.4.3.x
arne_redlich_&_ross_walker / iscsitarget 0.4.8 0.4.8.x
arne_redlich_&_ross_walker / iscsitarget 0.3.5 0.3.5.x
arne_redlich_&_ross_walker / iscsitarget 0.4.16 0.4.16.x
arne_redlich_&_ross_walker / iscsitarget 0.3.7 0.3.7.x
arne_redlich_&_ross_walker / iscsitarget 0.4.9 0.4.9.x
vladislav_bolkhovitin / generic_scsi_target_subsystem - 1.0.1.x
vladislav_bolkhovitin / generic_scsi_target_subsystem 0.9.0a 0.9.0a.x
vladislav_bolkhovitin / generic_scsi_target_subsystem 0.9.1 0.9.1.x
vladislav_bolkhovitin / generic_scsi_target_subsystem 0.9.2 0.9.2.x
vladislav_bolkhovitin / generic_scsi_target_subsystem 0.9.3-pre2 0.9.3-pre2.x
vladislav_bolkhovitin / generic_scsi_target_subsystem 0.9.3 0.9.3.x
vladislav_bolkhovitin / generic_scsi_target_subsystem 0.9.3-pre4 0.9.3-pre4.x
vladislav_bolkhovitin / generic_scsi_target_subsystem 0.9.3-pre1 0.9.3-pre1.x
vladislav_bolkhovitin / generic_scsi_target_subsystem 0.9.4 0.9.4.x
vladislav_bolkhovitin / generic_scsi_target_subsystem 0.9.5 0.9.5.x
vladislav_bolkhovitin / generic_scsi_target_subsystem 0.9.5.1 0.9.5.1.x
vladislav_bolkhovitin / generic_scsi_target_subsystem 0.9.5.2 0.9.5.2.x
vladislav_bolkhovitin / generic_scsi_target_subsystem 1.0.0 1.0.0.x