372 matches found
CVE-2007-4678
AppleRAID in Apple Mac OS X 10.3.9 and 10.4 through 10.4.10 allows attackers to cause a denial of service crash via a crafted striped disk image, which triggers a NULL pointer dereference when it is mounted...
Null pointer dereference
AppleRAID in Apple Mac OS X 10.3.9 and 10.4 through 10.4.10 allows attackers to cause a denial of service crash via a crafted striped disk image, which triggers a NULL pointer dereference when it is mounted...
Guidance EnCase fails to detect more than 25 partitions
Overview Guidance Software's EnCase Forensic can only detect the first 25 partitions on a volume. Description Guidance Software's EnCase Forensic is a tool that allows an investigator to acquire and analyze a disk image. EnCase names partitions either c: through z:, with an additional partition...
CVE-2007-4202
Guidance Software EnCase Enterprise Edition EEE 6 does not properly verify the identity of the acquisition target during communication with the EnCase Servlet EEE servlet, which might allow remote attackers to spoof the disk image...
Design/Logic Flaw
Guidance Software EnCase Enterprise Edition EEE 6 does not properly verify the identity of the acquisition target during communication with the EnCase Servlet EEE servlet, which might allow remote attackers to spoof the disk image...
CVE-2007-4202
Affected software: Guidance Software EnCase Enterprise Edition (EEE) 6. The vulnerability arises from weak identity verification between the EnCase SAFE server, the EnCase Servlet on target machines, and the target image request. The EnCase SAFE uses IP authentication to verify the servlet, enabl...
Design/Logic Flaw
Guidance Software EnCase does not properly handle 1 certain malformed MBR partition tables with many entries, which allows remote attackers to prevent logical collection of a disk image; 2 NTFS filesystems with directory loops, which allows remote attackers to prevent examination of certain...
CVE-2007-4035
Guidance Software EnCase does not properly handle 1 certain malformed MBR partition tables with many entries, which allows remote attackers to prevent logical collection of a disk image; 2 NTFS filesystems with directory loops, which allows remote attackers to prevent examination of certain...
Guidance Software response to iSEC report on EnCase
Guidance Software Response to iSEC Report Guidance Software received and reviewed the report drafted by two presenters at the upcoming Black Hat USA conference. We have also spoken to Alex Stamos, one of the testing leaders. The report authors disclose that they conducted, over a period of six...
CVE-2007-0722
Integer overflow in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to execute arbitrary code via a crafted AppleSingleEncoding disk image...
CVE-2007-0721
Unspecified vulnerability in diskimages-helper in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to execute arbitrary code via a crafted compressed disk image that triggers memory corruption...
Integer overflow
Integer overflow in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to execute arbitrary code via a crafted AppleSingleEncoding disk image...
CVE-2007-0722
Integer overflow in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to execute arbitrary code via a crafted AppleSingleEncoding disk image...
EUVD-2007-0719
Integer overflow in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to execute arbitrary code via a crafted AppleSingleEncoding disk image...
Mac OS X 10.4.8 (UserNotificationCenter) Privilege Escalation Exploit
No description provided by source. !/usr/bin/ruby Copyright c 2007 Kevin Finisterre kflists at digitalmunition.com Lance M. Havok lmh at info-pull.com All pwnage reserved. "Exploit" for MOAB-22-01-2007: All your crash are belong to us. require 'fileutils' bugselected = ARGV0 || 0.toi...
Memory corruption
Finder 10.4.6 on Apple Mac OS X 10.4.8 allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a long volume name in a DMG disk image, which results in memory corruption...
CVE-2007-0197
Finder 10.4.6 on Apple Mac OS X 10.4.8 allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a long volume name in a DMG disk image, which results in memory corruption...
CVE-2007-0197
Affected product: Apple Mac OS X Finder on Mac OS X 10.4.8. Vulnerable component: DMG disk image volume name handling in Finder. Root cause: memory corruption due to a long DMG volume name (buffer/bounds issue). Impact: remote attackers could cause denial of service and possibly arbitrary code ex...
DMA[2007-0109a] - 'Apple Finder Disk Image Volume Label Overflow / DoS'
DMA2007-0109a - 'Apple Finder Disk Image Volume Label Overflow / DoS' Author: Kevin Finisterre Vendors: http://www.apple.com Product: '= OSX 10.4 ?' References: http://www.digitalmunition.com/DMA2007-0109a.txt http://www.apple.com/macosx/features/finder/...
CVE-2006-6062
Unspecified vulnerability in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to cause a denial of service crash via a malformed UDTO HFS+ disk image, such as with "bad sectors," which triggers memory corruption...