Lucene search

[email protected]CVE-2006-7129

HistoryMar 06, 2007 - 1:19 a.m.

CVE-2006-7129

2007-03-0601:19:00

[email protected]

web.nvd.nist.gov

iss blackice

pc protection

security

vulnerability

bypass

local users

zwdeletefile api

nvd

cve-2006-7129

6.5 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

0.4%

JSON

ISS BlackICE PC Protection 3.6 cpj and cpu, and possibly earlier versions, allows local users to bypass the protection scheme by using the ZwDeleteFile API function to delete the critical filelock.txt file, which stores information about protected files.

Affected configurations

NVD

Node

issblackice_pc_protectionMatch3.6cpj

issblackice_pc_protectionMatch3.6cpu

CPENameOperatorVersion
iss:blackice_pc_protectioniss blackice pc protectioneq3.6cpj
iss:blackice_pc_protectioniss blackice pc protectioneq3.6cpu

CPE	Name	Operator	Version
iss:blackice_pc_protection	iss blackice pc protection	eq	3.6cpj
iss:blackice_pc_protection	iss blackice pc protection	eq	3.6cpu

References

archives.neohapsis.com/archives/fulldisclosure/2006-10/0298.html

securityreason.com/securityalert/2361

www.matousec.com/info/advisories/BlackICE-Filelock-protection-bypass.php

www.osvdb.org/30901

www.securityfocus.com/archive/1/448763/100/0/threaded

www.securityfocus.com/bid/20546

exchange.xforce.ibmcloud.com/vulnerabilities/29575

6.5 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

0.4%

JSON

Related for CVE-2006-7129

cvelist1 nvd1