CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-0001

Double free vulnerability in the iscsi_rx_handler function (usr/iscsi/iscsid.c) in the tgt daemon (tgtd) in Linux SCSI target framework (tgt) before 1.0.14, aka scsi-target-utils, allows remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via unknown vectors related to a buffer overflow during iscsi login. NOTE: some of these details are obtained from third party information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.079

EPSS Ranking 91.6%

CVSS Severity

CVSS v2 Score 5.0

References

Products affected by CVE-2011-0001

Zaal » Tgt » Version: Any

cpe:2.3:a:zaal:tgt:*
Zaal » Tgt » Version: 0.9.5

cpe:2.3:a:zaal:tgt:0.9.5
Zaal » Tgt » Version: 1.0.0

cpe:2.3:a:zaal:tgt:1.0.0
Zaal » Tgt » Version: 1.0.1

cpe:2.3:a:zaal:tgt:1.0.1
Zaal » Tgt » Version: 1.0.10

cpe:2.3:a:zaal:tgt:1.0.10
Zaal » Tgt » Version: 1.0.11

cpe:2.3:a:zaal:tgt:1.0.11
Zaal » Tgt » Version: 1.0.12

cpe:2.3:a:zaal:tgt:1.0.12
Zaal » Tgt » Version: 1.0.2

cpe:2.3:a:zaal:tgt:1.0.2
Zaal » Tgt » Version: 1.0.3

cpe:2.3:a:zaal:tgt:1.0.3
Zaal » Tgt » Version: 1.0.4

cpe:2.3:a:zaal:tgt:1.0.4
Zaal » Tgt » Version: 1.0.5

cpe:2.3:a:zaal:tgt:1.0.5
Zaal » Tgt » Version: 1.0.6

cpe:2.3:a:zaal:tgt:1.0.6
Zaal » Tgt » Version: 1.0.7

cpe:2.3:a:zaal:tgt:1.0.7
Zaal » Tgt » Version: 1.0.8

cpe:2.3:a:zaal:tgt:1.0.8
Zaal » Tgt » Version: 1.0.9

cpe:2.3:a:zaal:tgt:1.0.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-0001

Products

Pricing

Contact Us