Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in libtskbase.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function tsk_UTF16toUTF8 in tsk/base/tsk_unicode.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service attack.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
The Sleuth Kit 缓冲区错误漏洞
Vulnerability Description
The Sleuth Kit(TSK)是软件开发者Brian Carrier所研发的一套数据取证工具集合。该工具能够分析FAT、NTFS、UFS等文件系统,并提供文件系统的详细信息,包括已删除数据。 TSK 4.0.2版本至4.6.1版本中的libtskbase.a静态链接库的tsk/base/tsk_unicode.c文件的‘tsk_UTF16toUTF8’函数存在越界读取漏洞。攻击者可利用该漏洞泄露信息或读取未映射的内存,造成拒绝服务(越界读取)。
CVSS Information
N/A
Vulnerability Type
N/A