Network Appliance · Data Ontap · CVE-2005-3327
**Name of the Vulnerable Software and Affected Versions**
Network Appliance Data ONTAP versions 7.0 and earlier
**Description**
The issue allows iSCSI Initiators to bypass iSCSI authentication by using a modified client. This client skips the Security (Start) mode, as required by the Login Negotiation protocol, and uses Operational mode without proving identity.
**Recommendations**
For versions 7.0 and earlier, consider restricting access to iSCSI Initiators to minimize the risk of exploitation until a fix is available.