CVE-2007-4035

CVE-2007-4035 is a medium-severity vulnerability in Guidance Software Encase with a CVSS 2.0 base score of 5.0. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.

Key facts

Description

Guidance Software EnCase does not properly handle (1) certain malformed MBR partition tables with many entries, which allows remote attackers to prevent logical collection of a disk image; (2) NTFS filesystems with directory loops, which allows remote attackers to prevent examination of certain directory contents; and (3) certain other malformed NTFS filesystems, which allows remote attackers to prevent examination of corrupted records. NOTE: the vendor disputes the significance of these issues, because physical collection can be used instead, because the vendor believes that relevant attackers typically do not corrupt an MBR or a filesystem, and because detection of a loop is valuable on its own

Frequently asked questions

What is CVE-2007-4035?
Guidance Software EnCase does not properly handle (1) certain malformed MBR partition tables with many entries, which allows remote attackers to prevent logical collection of a disk image; (2) NTFS filesystems with directory loops, which allows remote attackers to prevent examination of certain directory contents; and (3) certain other malformed NTFS filesystems, which allows remote attackers to prevent examination of corrupted records. NOTE: the vendor disputes the significance of these issues, because physical collection can be used instead, because the vendor believes that relevant attackers typically do not corrupt an MBR or a filesystem, and because detection of a loop is valuable on its own
How severe is CVE-2007-4035?
CVE-2007-4035 has a CVSS 2.0 base score of 5.0, rated medium severity.
Is CVE-2007-4035 being actively exploited?
It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 2% (80th percentile), an estimate of the probability of exploitation in the next 30 days.
What products are affected by CVE-2007-4035?
CVE-2007-4035 affects Guidance Software Encase. See the affected-products list for the exact vulnerable versions.
How do I fix CVE-2007-4035?
Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
When was CVE-2007-4035 published?
CVE-2007-4035 was published on 2007-07-27 and last updated on 2026-06-16.

References

Affected products (1)

More vulnerabilities in Guidance Software Encase

All CVEs affecting Guidance Software Encase →