Guidance Software
Products
2- 7 CVEs
- 1 CVE
Recent CVEs
7| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2007-4201 | 0.00 | — | 0.02 | Aug 8, 2007 | Guidance Software EnCase 6.2 and 6.5 does not properly handle a volume with more than 25 partitions, which might allow remote attackers to prevent examination of certain data, a related issue to CVE-2007-4035. | |||
| CVE-2007-4194 | 0.00 | — | 0.01 | Aug 8, 2007 | Guidance Software EnCase 5.0 allows user-assisted remote attackers to cause a denial of service (stack memory consumption) and possibly have other unspecified impact via a malformed file, related to "EnCase's file system parsing." NOTE: this information is based upon a vague… | |||
| CVE-2007-4202 | 0.00 | — | 0.01 | Aug 8, 2007 | Guidance Software EnCase Enterprise Edition (EEE) 6 does not properly verify the identity of the acquisition target during communication with the EnCase Servlet (EEE servlet), which might allow remote attackers to spoof the disk image. | |||
| CVE-2007-4035 | 0.00 | — | 0.02 | Jul 27, 2007 | Guidance Software EnCase does not properly handle (1) certain malformed MBR partition tables with many entries, which allows remote attackers to prevent logical collection of a disk image; (2) NTFS filesystems with directory loops, which allows remote attackers to prevent… | |||
| CVE-2007-4037 | 0.00 | — | 0.01 | Jul 27, 2007 | Guidance Software EnCase allows user-assisted attackers to trigger a buffer over-read and application crash via a malformed NTFS filesystem containing a modified FILE record with a certain large offset. NOTE: the vendor disputes the significance of this issue, asserting that… | |||
| CVE-2007-4036 | 0.00 | — | 0.01 | Jul 27, 2007 | Guidance Software EnCase allows user-assisted remote attackers to cause a denial of service via (1) a corrupted Microsoft Exchange database, which triggers an application crash when many options are selected; (2) a corrupted NTFS filesystem, which causes the application to… | |||
| CVE-2005-1578 | 0.00 | — | 0.00 | May 13, 2005 | EnCase Forensic Edition 4.18a does not support Device Configuration Overlays (DCO), which allows attackers to hide information without detection. |
- CVE-2007-4201Aug 8, 2007risk 0.00cvss —epss 0.02
Guidance Software EnCase 6.2 and 6.5 does not properly handle a volume with more than 25 partitions, which might allow remote attackers to prevent examination of certain data, a related issue to CVE-2007-4035.
- CVE-2007-4194Aug 8, 2007risk 0.00cvss —epss 0.01
Guidance Software EnCase 5.0 allows user-assisted remote attackers to cause a denial of service (stack memory consumption) and possibly have other unspecified impact via a malformed file, related to "EnCase's file system parsing." NOTE: this information is based upon a vague…
- CVE-2007-4202Aug 8, 2007risk 0.00cvss —epss 0.01
Guidance Software EnCase Enterprise Edition (EEE) 6 does not properly verify the identity of the acquisition target during communication with the EnCase Servlet (EEE servlet), which might allow remote attackers to spoof the disk image.
- CVE-2007-4035Jul 27, 2007risk 0.00cvss —epss 0.02
Guidance Software EnCase does not properly handle (1) certain malformed MBR partition tables with many entries, which allows remote attackers to prevent logical collection of a disk image; (2) NTFS filesystems with directory loops, which allows remote attackers to prevent…
- CVE-2007-4037Jul 27, 2007risk 0.00cvss —epss 0.01
Guidance Software EnCase allows user-assisted attackers to trigger a buffer over-read and application crash via a malformed NTFS filesystem containing a modified FILE record with a certain large offset. NOTE: the vendor disputes the significance of this issue, asserting that…
- CVE-2007-4036Jul 27, 2007risk 0.00cvss —epss 0.01
Guidance Software EnCase allows user-assisted remote attackers to cause a denial of service via (1) a corrupted Microsoft Exchange database, which triggers an application crash when many options are selected; (2) a corrupted NTFS filesystem, which causes the application to…
- CVE-2005-1578May 13, 2005risk 0.00cvss —epss 0.00
EnCase Forensic Edition 4.18a does not support Device Configuration Overlays (DCO), which allows attackers to hide information without detection.