iSCSI Enterprise Target IETD.CONF Local Information Disclosure Vulnerability

iSCSI Enterprise Target IETD.CONF Local Information Disclosure Vulnerability

iSCSI Enterprise Target is prone to a local information-disclosure vulnerability because the software sets incorrect permissions on the '/etc/ietd.conf' file.

Attackers can exploit this issue to obtain usernames and passwords as well as information about the configuration of the affected application.

This issue affects iSCSI Enterprise Target 0.4.15; other versions may also be affected.