Guidance Software EnCase Forensic Multiple Denial Of Service Vulnerabilities
BID:25100
Info
Guidance Software EnCase Forensic Multiple Denial Of Service Vulnerabilities
| Bugtraq ID: | 25100 |
| Class: | Design Error |
| CVE: |
CVE-2007-4201 CVE-2007-4202 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 27 2007 12:00AM |
| Updated: | Nov 15 2007 12:40AM |
| Credit: | The discoverers of these issues are currently unknown. The issues, were disclosed to the vendor as part of an iSEC Report. |
| Vulnerable: |
Guidance Software EnCase 0 |
| Not Vulnerable: | |
Discussion
Guidance Software EnCase Forensic Multiple Denial Of Service Vulnerabilities
Guidance Software EnCase Forensic is prone to multiple denial-of-service vulnerabilities because it fails to handle specially crafted filesystems and partitions.
Attackers can exploit this issue to crash the application or cause it to hang. This can delay and complicate forensic investigations.
Guidance Software EnCase Forensic is prone to multiple denial-of-service vulnerabilities because it fails to handle specially crafted filesystems and partitions.
Attackers can exploit this issue to crash the application or cause it to hang. This can delay and complicate forensic investigations.
Exploit / POC
Guidance Software EnCase Forensic Multiple Denial Of Service Vulnerabilities
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution / Fix
Guidance Software EnCase Forensic Multiple Denial Of Service Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
References
Guidance Software EnCase Forensic Multiple Denial Of Service Vulnerabilities
References:
References:
- Guidance Software Homepage (Guidance Software)
- Guidance Software response to iSEC report on EnCase (Guidance Software)
- Vulnerability Note VU#310057 (US-CERT)
- Vulnerability Note VU#912593 (US-CERT)