Anfälligkeitssuche        Suche in 172616 CVE Beschreibungen
und 81291 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.840689
Kategorie:Ubuntu Local Security Checks
Titel:Ubuntu Update for tgt USN-1156-1
Zusammenfassung:Ubuntu Update for Linux kernel vulnerabilities USN-1156-1
Beschreibung:Summary:
Ubuntu Update for Linux kernel vulnerabilities USN-1156-1

Vulnerability Insight:
It was discovered that tgt incorrectly handled long iSCSI name strings, and
invalid PDUs. A remote attacker could exploit this to cause tgt to crash,
resulting in a denial of service, or possibly execute arbitrary code. This
issue only affected Ubuntu 10.10. (CVE-2010-2221)

Emmanuel Bouillon discovered that tgt incorrectly handled certain iSCSI
logins. A remote attacker could exploit this to cause tgt to crash,
resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2011-0001)

Affected Software/OS:
tgt on Ubuntu 11.04,
Ubuntu 10.10

Solution:
Please Install the Updated Packages.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2010-2221
BugTraq ID: 41327
http://www.securityfocus.com/bid/41327
Bugtraq: 20100702 TELUS Security Labs VR - iSCSI target Multiple Implementations iSNS Stack Buffer Overflow (Google Search)
http://archives.neohapsis.com/archives/bugtraq/2010-07/0022.html
http://archives.neohapsis.com/archives/fulldisclosure/2010-07/0058.html
http://www.mandriva.com/security/advisories?name=MDVSA-2010:131
http://sourceforge.net/mailarchive/forum.php?thread_name=E2BB8074E5500C42984D980D4BD78EF904075006%40MFG-NYC-EXCH2.mfg.prv&forum_name=iscsitarget-devel
http://lists.wpkg.org/pipermail/stgt/2010-July/003858.html
http://www.osvdb.org/65990
http://www.osvdb.org/65991
http://www.osvdb.org/65992
http://www.redhat.com/support/errata/RHSA-2010-0518.html
http://www.securitytracker.com/id?1024175
http://secunia.com/advisories/40485
http://secunia.com/advisories/40494
http://secunia.com/advisories/40495
SuSE Security Announcement: SUSE-SR:2010:017 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html
http://www.vupen.com/english/advisories/2010/1760
http://www.vupen.com/english/advisories/2010/1786
Common Vulnerability Exposure (CVE) ID: CVE-2011-0001
BugTraq ID: 46817
http://www.securityfocus.com/bid/46817
Debian Security Information: DSA-2209 (Google Search)
http://www.debian.org/security/2011/dsa-2209
https://bugzilla.redhat.com/attachment.cgi?id=473779&action=diff
http://lists.wpkg.org/pipermail/stgt/2011-March/004473.html
http://www.redhat.com/support/errata/RHSA-2011-0332.html
http://www.securitytracker.com/id?1025184
http://secunia.com/advisories/43706
http://secunia.com/advisories/43713
SuSE Security Announcement: SUSE-SR:2011:009 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html
http://www.vupen.com/english/advisories/2011/0636
XForce ISS Database: lstf-iscsirxhandler-dos(66010)
https://exchange.xforce.ibmcloud.com/vulnerabilities/66010
CopyrightCopyright (c) 2011 Greenbone Networks GmbH

Dies ist nur einer von 81291 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.