ISS BlackICE PC Protection DLL faking of run-time linked libraries Vulnerability

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

ISS BlackICE PC Protection DLL faking of run-time linked libraries Vulnerability

Subject: ISS BlackICE PC Protection DLL faking of run-time linked libraries Vulnerability
Date: Tue, 01 Aug 2006 11:57:56 +0200
From: David Matousek <suppressed>

BlackICE does not protect pamversion.dll in its installation directory. And also because its component
protection fails to protect BlackICE processes this can be misused to inject fake DLL into BlackICE service.

The whole advisory with more details and source code is available here
http://www.matousec.com/info/advisories/BlackICE-DLL-faking-of-run-time-linked-libraries.php

Regards,


--
David Matousek

Founder and Chief Representative of Matousec - Transparent security
http://www.matousec.com/

Prev by Date: TSEP 0.9.4.2 <= Remote File Inclusion
Next by Date: WoW Roster <= 1.5.x Remote File Include (hsList.php)
Previous by thread: TSEP 0.9.4.2 <= Remote File Inclusion
Next by thread: [SECURITY] [DSA 1132-1] New apache2 packages fix buffer overflow
Index(es):
- Date
- Thread

Mail converted by mhonarc 2.6.15
This archive provided courtesy of JSW4.NET, Internet Hosting Services for Small Business.