Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4200


Vulnerability Score 4.3 4.3
CVE Id CVE-2007-4200
Last Modified 15 Nov 2008 01:56:11
Published 07 Aug 2007 09:17:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE



ntfs.c in fsstat in Brian Carrier The Sleuth Kit (TSK) before 2.09 interprets a certain variable as a byte count rather than a count of 32-bit integers, which allows user-assisted remote attackers to cause a denial of service (application crash) and prevent examination of certain NTFS files via a malformed NTFS image.

Vulnerable Systems


  • Brian Carrier The Slueth Kit 2.08


BID - 25181

BUGTRAQ - 20070802 RE: Re: Guidance Software response to iSEC report on EnCase

BUGTRAQ - 20070726 Re: Guidance Software response to iSEC report on EnCase


MLIST - [sleuthkit-announce] 20070614 TSK 2.09 Released and new Wiki

OSVDB - 46996

Last Updated: 27 May 2016 10:45:48