Vulnerability Description
ISS BlackICE PC Protection 3.6 cpj and cpu, and possibly earlier versions, allows local users to bypass the protection scheme by using the ZwDeleteFile API function to delete the critical filelock.txt file, which stores information about protected files.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Iss | Blackice Pc Protection | 3.6cpj |
References
- http://archives.neohapsis.com/archives/fulldisclosure/2006-10/0298.html
- http://securityreason.com/securityalert/2361
- http://www.matousec.com/info/advisories/BlackICE-Filelock-protection-bypass.php
- http://www.osvdb.org/30901
- http://www.securityfocus.com/archive/1/448763/100/0/threaded
- http://www.securityfocus.com/bid/20546
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29575
- http://archives.neohapsis.com/archives/fulldisclosure/2006-10/0298.html
- http://securityreason.com/securityalert/2361
- http://www.matousec.com/info/advisories/BlackICE-Filelock-protection-bypass.php
- http://www.osvdb.org/30901
- http://www.securityfocus.com/archive/1/448763/100/0/threaded
- http://www.securityfocus.com/bid/20546
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29575
FAQ
What is CVE-2006-7129?
CVE-2006-7129 is a vulnerability with a CVSS score of 2.1 (LOW). ISS BlackICE PC Protection 3.6 cpj and cpu, and possibly earlier versions, allows local users to bypass the protection scheme by using the ZwDeleteFile API function to delete the critical filelock.txt...
How severe is CVE-2006-7129?
CVE-2006-7129 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-7129?
Check the references section above for vendor advisories and patch information. Affected products include: Iss Blackice Pc Protection.