iSCSI.target.Multiple.Implementations.Format.String

description-logoDescription

This indicates an attack attempt against a Format String vulnerability in iSCSI Target.
The vulnerability is caused by an error when the vulnerable software handles a malformed message. It allows a remote attacker to execute arbitrary code via sending crafted messages.

affected-products-logoAffected Products

iSCSI Enterprise Target (aka iscsitarget) 0.4.16

Impact logoImpact

System compromise.

recomended-action-logoRecommended Actions

Apply the latest update from the vendor:
http://www.debian.org/security/2010/dsa-2042

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)