Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
the sleuth kit the sleuth kit vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2017-13755
In The Sleuth Kit (TSK) 4.4.2, opening a crafted ISO 9660 image triggers an out-of-bounds read in iso9660_proc_dir() in tsk/fs/iso9660_dent.c in libtskfs.a, as demonstrated by fls.
Sleuthkit The Sleuth Kit 4.4.2
Debian Debian Linux 9.0
5.5
CVSSv3
CVE-2017-13756
In The Sleuth Kit (TSK) 4.4.2, opening a crafted disk image triggers infinite recursion in dos_load_ext_table() in tsk/vs/dos.c in libtskvs.a, as demonstrated by mmls.
Sleuthkit The Sleuth Kit 4.4.2
Debian Debian Linux 9.0
5.5
CVSSv3
CVE-2017-13760
In The Sleuth Kit (TSK) 4.4.2, fls hangs on a corrupt exfat image in tsk_img_read() in tsk/img/img_io.c in libtskimg.a.
Sleuthkit The Sleuth Kit 4.4.2
Debian Debian Linux 9.0
9.8
CVSSv3
CVE-2019-14532
An issue exists in The Sleuth Kit (TSK) 4.6.6. There is an off-by-one overwrite due to an underflow on tools/hashtools/hfind.cpp while using a bogus hash table.
Sleuthkit The Sleuth Kit 4.6.6
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Fedoraproject Fedora 32
6.5
CVSSv3
CVE-2019-1010065
The Sleuth Kit 4.6.0 and previous versions is affected by: Integer Overflow. The impact is: Opening crafted disk image triggers crash in tsk/fs/hfs_dent.c:237. The component is: Overflow in fls tool used on HFS image. Bug is in tsk/fs/hfs.c file in function hfs_cat_traverse() in ...
Sleuthkit The Sleuth Kit
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Debian Debian Linux 9.0
6.5
CVSSv3
CVE-2018-19497
In The Sleuth Kit (TSK) up to and including 4.6.4, hfs_cat_traverse in tsk/fs/hfs.c does not properly determine when a key length is too large, which allows malicious users to cause a denial of service (SEGV on unknown address with READ memory access in a tsk_getu16 call in hfs_d...
Sleuthkit The Sleuth Kit
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Fedoraproject Fedora 29
Fedoraproject Fedora 30
9.8
CVSSv3
CVE-2020-10232
In version 4.8.0 and previous versions of The Sleuth Kit (TSK), there is a stack buffer overflow vulnerability in the YAFFS file timestamp parsing logic in yaffsfs_istat() in fs/yaffs.c.
Sleuthkit The Sleuth Kit
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Fedoraproject Fedora 32
NA
CVE-2007-4197
icat in Brian Carrier The Sleuth Kit (TSK) prior to 2.09 omits NULL pointer checks in certain code paths, which allows user-assisted remote malicious users to cause a denial of service (NULL dereference and application crash) and prevent examination of certain NTFS files via a ma...
Brian Carrier The Slueth Kit
NA
CVE-2007-4196
icat in Brian Carrier The Sleuth Kit (TSK) prior to 2.09 misinterprets a certain memory location as the holder of a loop iteration count, which allows user-assisted remote malicious users to cause a denial of service (long loop) and prevent examination of certain NTFS files via a...
Brian Carrier The Slueth Kit
NA
CVE-2007-4198
The fs_data_put_str function in ntfs.c in fls in Brian Carrier The Sleuth Kit (TSK) prior to 2.09 does not validate a certain length value, which allows user-assisted remote malicious users to cause a denial of service (application crash) and prevent examination of certain NTFS f...
Brian Carrier The Slueth Kit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »