CVE-2007-4037

Name of the Vulnerable Software and Affected Versions: Guidance Software EnCase (affected versions not specified)

Description: The issue allows user-assisted attackers to trigger a buffer over-read and application crash via a malformed NTFS filesystem containing a modified FILE record with a certain large offset. The vendor disputes the significance of this issue, asserting that relevant attackers typically do not corrupt a filesystem, and indicating that the relevant read operation can be disabled.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.