The Sleuth Kit Multiple Denial Of Service And Buffer Overflow Vulnerabilities
BID:25181
Info
The Sleuth Kit Multiple Denial Of Service And Buffer Overflow Vulnerabilities
| Bugtraq ID: | 25181 |
| Class: | Unknown |
| CVE: |
CVE-2007-4196 CVE-2007-4197 CVE-2007-4198 CVE-2007-4199 CVE-2007-4200 CVE-2007-4195 |
| Remote: | Yes |
| Local: | No |
| Published: | Aug 02 2007 12:00AM |
| Updated: | Jul 05 2016 10:00PM |
| Credit: | The discoverers of these issues are currently unknown. These issues were disclosed to the vendor as part of an iSEC Report. |
| Vulnerable: |
The Sleuth Kit The Sleuth Kit 2.08 The Sleuth Kit The Sleuth Kit 2.07 |
| Not Vulnerable: |
The Sleuth Kit The Sleuth Kit 2.09 |
Discussion
The Sleuth Kit Multiple Denial Of Service And Buffer Overflow Vulnerabilities
The Sleuth Kit is prone to multiple denial-of-service and buffer-overflow vulnerabilities.
An attacker can exploit these issues to crash the application or cause it to hang. This can delay and complicate forensic investigations. Some of these issues may be exploitable to execute arbitrary code, but this has not been confirmed.
Versions prior to the Sleuth Kit 2.09 are vulnerable.
The Sleuth Kit is prone to multiple denial-of-service and buffer-overflow vulnerabilities.
An attacker can exploit these issues to crash the application or cause it to hang. This can delay and complicate forensic investigations. Some of these issues may be exploitable to execute arbitrary code, but this has not been confirmed.
Versions prior to the Sleuth Kit 2.09 are vulnerable.
Exploit / POC
The Sleuth Kit Multiple Denial Of Service And Buffer Overflow Vulnerabilities
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
The Sleuth Kit Multiple Denial Of Service And Buffer Overflow Vulnerabilities
Solution:
The vendor released an update to address these issues. Please see the references for more information.
Solution:
The vendor released an update to address these issues. Please see the references for more information.
References
The Sleuth Kit Multiple Denial Of Service And Buffer Overflow Vulnerabilities
References:
References:
- The Sleuth Kit 2.09 Release Notes (The Sleuth Kit)
- The Sleuth Kit Home Page (The Sleuth Kit)
- Guidance Software response to iSEC report on EnCase (Guidance Software)
- RE: Re: Guidance Software response to iSEC report on EnCase ([email protected])