CVE-2006-7129 - ISS BlackICE PC Protection 3.6 cpj and cpu, and possibly earlier versions, allows local users to byp

CVE-2006-7129

Summary

ISS BlackICE PC Protection 3.6 cpj and cpu, and possibly earlier versions, allows local users to bypass the protection scheme by using the ZwDeleteFile API function to delete the critical filelock.txt file, which stores information about protected files.

References

Vulnerable Configurations

cpe:2.3:a:iss:blackice_pc_protection:3.6cpj:*:*:*:*:*:*:*
cpe:2.3:a:iss:blackice_pc_protection:3.6cpj:*:*:*:*:*:*:*
cpe:2.3:a:iss:blackice_pc_protection:3.6cpu:*:*:*:*:*:*:*
cpe:2.3:a:iss:blackice_pc_protection:3.6cpu:*:*:*:*:*:*:*

CVSS

Base:	2.1 (as of 16-10-2018 - 16:29)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	PARTIAL	NONE

cvss-vector via4

AV:L/AC:L/Au:N/C:N/I:P/A:N

refmap via4

bid	20546
bugtraq	20061015 ISS BlackICE PC Protection Filelock protection bypass Vulnerability
fulldisc	20061015 ISS BlackICE PC Protection Filelock protection bypass Vulnerability
misc	http://www.matousec.com/info/advisories/BlackICE-Filelock-protection-bypass.php
osvdb	30901
sreason	2361
xf	blackice-filelock-protection-bypass(29575)

Last major update

16-10-2018 - 16:29

Published

06-03-2007 - 01:19

Last modified

16-10-2018 - 16:29