File System Handling Issue in The Sleuth Kit by Systinet
CVE-2012-5619

Currently unrated

Key Information:

Vendor: Sleuthkit
Status: The Sleuth Kit
Vendor: CVE Published:; 29 September 2014

What is CVE-2012-5619?

The Sleuth Kit (TSK) 4.0.1 is susceptible to a handling flaw related to the representation of '.' (dotfile) entries in FAT file systems. This weakness gives local users the capability to obscure their activities, complicating forensic analysis. This was notably demonstrated in the case of the Flame malware, which exploited this limitation to hide malicious actions and evade detection during forensic investigations.

References

http://www.openwall.com/lists/oss-security/2012/12/04/2

mailing-listx_refsource_MLIST

https://bugzilla.redhat.com/show_bug.cgi?id=883330

x_refsource_CONFIRM

http://labs.bitdefender.com/2012/06/flame-the-story-of-le...

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 29, 2014
Vulnerability Reserved
Oct 24, 2012

CVE-2012-5619 Data

JSON

Sleuthkit

What is CVE-2012-5619?

References

Timeline