CVE-2007-4036 - Guidance Software EnCase allows user-assisted remote attackers to cause a denial of service via (1)

CVE-2007-4036

Summary

Guidance Software EnCase allows user-assisted remote attackers to cause a denial of service via (1) a corrupted Microsoft Exchange database, which triggers an application crash when many options are selected; (2) a corrupted NTFS filesystem, which causes the application to report "memory allocation errors;" or (3) deeply nested directories, which trigger an application crash during an Expand All action. NOTE: the vendor disputes the significance of these vectors because the user can select fewer options, there is no operational impact, or the user can do less expansion

References

Vulnerable Configurations

cpe:2.3:a:guidance_software:encase:*:*:*:*:*:*:*:*
cpe:2.3:a:guidance_software:encase:*:*:*:*:*:*:*:*

CVSS

Base:	4.3 (as of 07-08-2024 - 15:15)
Impact:
Exploitability:

CWE

CWE-399

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:N/I:N/A:P

refmap via4

bid	25100
bugtraq	20070726 Guidance Software response to iSEC report on EnCase 20070726 Re: Guidance Software response to iSEC report on EnCase 20070727 Re: Guidance Software response to iSEC report on EnCase (fwd) 20070802 RE: Re: Guidance Software response to iSEC report on EnCase
misc	http://www.blackhat.com/html/bh-usa-07/bh-usa-07-speakers.html#Palmer http://www.isecpartners.com/files/iSEC-Breaking_Forensics_Software-Paper.v1_1.BH2007.pdf

Last major update

07-08-2024 - 15:15

Published

27-07-2007 - 22:30

Last modified

07-08-2024 - 15:15