CVE Vulnerabilities

CVE-2005-3327

Published: Oct 27, 2005 | Modified: Oct 18, 2016
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Network Appliance Data ONTAP 7.0 and earlier allows iSCSI Initiators to bypass iSCSI authentication via a modified client that skips the Security (Start) mode, as required by the Login Negotiation protocol, and uses Operational mode without proving identity.

Affected Software

Name Vendor Start Version End Version
Data_ontap Network_appliance 6.5 6.5
Data_ontap Network_appliance 6.4 6.4
Data_ontap Network_appliance * 7.0

References