Unrated severityNVD Advisory· Published Sep 29, 2014· Updated May 6, 2026

CVE-2012-5619

Description

The Sleuth Kit (TSK) 4.0.1 does not properly handle "." (dotfile) file system entries in FAT file systems and other file systems for which . is not a reserved name, which allows local users to hide activities it more difficult to conduct forensics activities, as demonstrated by Flame.

Affected products

Sleuthkit/The Sleuth Kit
cpe:2.3:a:sleuthkit:the_sleuth_kit:4.0.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

labs.bitdefender.com/2012/06/flame-the-story-of-leaked-data-carried-by-human-vector/nvd
lists.fedoraproject.org/pipermail/package-announce/2013-January/097289.htmlnvd
lists.fedoraproject.org/pipermail/package-announce/2013-January/097293.htmlnvd
www.mandriva.com/security/advisoriesnvd
www.openwall.com/lists/oss-security/2012/12/01/2nvd
www.openwall.com/lists/oss-security/2012/12/04/2nvd
bugzilla.redhat.com/show_bug.cginvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000