30 matches found
EUVD-2006-4529
Malware in sbrugna...
EUVD-2004-2117
Malware in sbrugna...
CVE-2003-5002
A vulnerability was found in ISS BlackICE PC Protection. It has been declared as problematic. Affected by this vulnerability is the component Update Handler which allows cleartext transmission of data. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
CVE-2003-5001
A vulnerability was found in ISS BlackICE PC Protection and classified as critical. Affected by this issue is the component Cross Site Scripting Detection. The manipulation as part of POST/PUT/DELETE/OPTIONS Request leads to privilege escalation. The attack may be launched remotely. The exploit h...
CVE-2003-5003
A vulnerability was found in ISS BlackICE PC Protection. It has been rated as problematic. Affected by this issue is the Update Handler. The manipulation with an unknown input leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may ...
CVE-2003-5002
ISS BlackICE PC Protection is affected by a vulnerability in the Update Handler component that allows cleartext data transmission. Affected products are noted as no longer supported by the maintainer. Public documents describe this as a problematic issue without details on a fix. In practice, the...
CVE-2003-5001
The CVE-2003-5001 entry concerns ISS BlackICE PC Protection, specifically the Cross Site Scripting Detection component. The vulnerability arises from manipulation of POST/PUT/DELETE/OPTIONS requests, enabling privilege escalation. The attack surface is remote, and exploitation has been disclosed ...
PT-2022-7715 · Ibm · Blackice Pc Protection
Name of the Vulnerable Software and Affected Versions: ISS BlackICE PC Protection affected versions not specified Description: A vulnerability was found in the Update Handler component of ISS BlackICE PC Protection, allowing cleartext transmission of data. This issue is declared as problematic an...
IBM ISS BlackICE PC 安全漏洞
IBM ISS BlackICE PC is a personal firewall/IDS for Windows desktops from International Business Machines IBM. A security vulnerability exists in IBM ISS BlackICE PC Protection that stems from Cross Site Scripting Detection causing an elevation of privilege when processing operations that are part...
IBM ISS BlackICE PC 安全漏洞
IBM ISS BlackICE PC is a personal firewall/IDS for Windows desktops from International Business Machines IBM. A security vulnerability exists in IBM ISS BlackICE PC Protection that originates in a component update handler that allows for the transmission of data in clear text...
Internet Security Systems 3.6 ZWDeleteFile Function Arbitrary File Deletion Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20546/info Internet Security Systems ISS BlackICE PC Protection is prone to a file-deletion vulnerability. An attacker can exploit this issue to delete arbitrary files within the context of the affected application. This...
Internet Security Systems BlackICE PC Protection 3.6 Firewall.INI Local Buffer Overrun Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10915/info It is reported that BlackICE PC Protection is prone to a local buffer overrun when handling excessive input in certain configuration directives parsed from the firewall.ini file included with the software. It i...
Internet Security Systems 3.6 - 'ZWDeleteFile()' Arbitrary File Deletion
source: https://www.securityfocus.com/bid/20546/info Internet Security Systems ISS BlackICE PC Protection is prone to a file-deletion vulnerability. An attacker can exploit this issue to delete arbitrary files within the context of the affected application. This could lead to other attacks...
[Full-disclosure] ISS BlackICE PC Protection Filelock protection bypass Vulnerability
Hello, We would like to inform you about a vulnerability in ISS BlackICE PC Protection. Description: BlackICE PC Protection protects its files against manipulation by malicious software. Its critical files like its database of trusted applications or firewall configuration are protected. The list...
Internet Security Systems 3.6 - ZWDeleteFile() Arbitrary File Deletion
Internet Security Systems 3.6 - ZWDeleteFile Arbitrary File Deletion source: https://www.securityfocus.com/bid/20546/info Internet Security Systems ISS BlackICE PC Protection is prone to a file-deletion vulnerability. An attacker can exploit this issue to delete arbitrary files within the context...
CVE-2006-4541
CVE-2006-4541 affects RapDrv.sys in BlackICE PC Protection 3.6.x and earlier variants, where a NULL third argument passed to NtOpenSection can crash the system, enabling local denial of service. The vulnerability is tied to the driver’s handling of NtOpenSection arguments. No exploitation details...
CVE-2006-4541
RapDrv.sys in BlackICE PC Protection 3.6.cpn, cpj, cpiE, and possibly 3.6 and earlier, allows local users to cause a denial of service crash via a NULL third argument to the NtOpenSection API function. NOTE: it was later reported that 3.6.cqn is also affected...
ISS BlackICE PC Protection Insufficient validation of arguments of NtOpenSection Vulnerability
Hello, I would like to inform you about a vulnerability in BlackICE PC Protection driver found by Matousec - Transparent security. Description: Hooking SSDT functions requires extra caution. SSDT function handlers are executed in the kernel mode but their callers are executed in the user mode...
[SA21710] BlackICE PC Protection "NtOpenSection()" Denial of Service
TITLE: BlackICE PC Protection "NtOpenSection" Denial of Service SECUNIA ADVISORY ID: SA21710 VERIFY ADVISORY: http://secunia.com/advisories/21710/ CRITICAL: Not critical IMPACT: DoS WHERE: Local system SOFTWARE: BlackICE PC Protection 3.x http://secunia.com/product/1702/ DESCRIPTION: David Matous...
CVE-2006-3999
ISS BlackICE PC Protection 3.6.cpj, 3.6.cpiE, and possibly earlier versions do not properly monitor the integrity of the pamversion.dll BlackICE library, which allows local users to subvert BlackICE by replacing pamversion.dll. NOTE: in most cases, the attack would not cross privilege boundaries...