Vulnerability Note VU#845747
PTK contains multiple vulnerabilities
The PTK sleuthkit interface contains multiple vulnerabilities. If exploited, these vulnerabilities may allow an attacker to gain elevated privileges or conduct XSS attacks.
PTK is an interface to the sleuthkit forensic tools that uses Apache, PHP and MySQL. PTK versions 1.0.0 to 1.0.4 contain multiple vulnerabilities. These vulnerabilities may be triggered remotely or during the inspection of local HTML files that are rendered in web browsers.
Users and administrators are encouraged to update to the most recent version of PTK.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|DFLabs||Affected||-||13 Mar 2009|
CVSS Metrics (Learn More)
Thanks to Gabriele Zanoni (Secure Network Srl, firstname.lastname@example.org) for reporting this issue, and thanks to DFLabs for providing technical information.
This document was written by Ryan Giobbi.
- CVE IDs: Unknown
- Date Public: 13 Mar 2009
- Date First Published: 13 Mar 2009
- Date Last Updated: 13 Mar 2009
- Severity Metric: 0.56
- Document Revision: 51
If you have feedback, comments, or additional information about this vulnerability, please send us email.