CVE-2007-4035

Name of the Vulnerable Software and Affected Versions: Guidance Software EnCase (affected versions not specified)

Description: The issue arises from the improper handling of certain malformed MBR partition tables and NTFS filesystems. This allows remote attackers to prevent the logical collection of a disk image or examination of certain directory contents. Specifically, the software does not handle (1) certain malformed MBR partition tables with many entries, (2) NTFS filesystems with directory loops, and (3) certain other malformed NTFS filesystems. The vendor disputes the significance of these issues, citing that physical collection can be used instead and that detection of a loop is valuable on its own.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.