CVE-2004-1714
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
11/08/2004
Last modified:
03/04/2025
Description
BlackICE PC Protection and Server Protection installs (1) firewall.ini, (2) blackice.ini, (3) sigs.ini and (4) protect.ini with Everyone Full Control permissions, which allows local users to cause a denial of service (crash) or modify configuration, as demonstrated by modifying firewall.ini to contain a large firewall rule.
Impact
Base Score 3.x
7.10
Severity 3.x
HIGH
Base Score 2.0
2.10
Severity 2.0
LOW
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:iss:blackice_pc_protection:3.6cbd:*:*:*:*:*:*:* | ||
cpe:2.3:a:iss:blackice_pc_protection:3.6cbr:*:*:*:*:*:*:* | ||
cpe:2.3:a:iss:blackice_pc_protection:3.6cbz:*:*:*:*:*:*:* | ||
cpe:2.3:a:iss:blackice_pc_protection:3.6cca:*:*:*:*:*:*:* | ||
cpe:2.3:a:iss:blackice_pc_protection:3.6ccb:*:*:*:*:*:*:* | ||
cpe:2.3:a:iss:blackice_pc_protection:3.6ccc:*:*:*:*:*:*:* | ||
cpe:2.3:a:iss:blackice_pc_protection:3.6ccd:*:*:*:*:*:*:* | ||
cpe:2.3:a:iss:blackice_pc_protection:3.6cce:*:*:*:*:*:*:* | ||
cpe:2.3:a:iss:blackice_pc_protection:3.6ccf:*:*:*:*:*:*:* | ||
cpe:2.3:a:iss:blackice_pc_protection:3.6ccg:*:*:*:*:*:*:* | ||
cpe:2.3:a:iss:blackice_server_protection:3.5cdf:*:*:*:*:*:*:* | ||
cpe:2.3:a:iss:blackice_server_protection:3.6cbz:*:*:*:*:*:*:* | ||
cpe:2.3:a:iss:blackice_server_protection:3.6cca:*:*:*:*:*:*:* | ||
cpe:2.3:a:iss:blackice_server_protection:3.6ccb:*:*:*:*:*:*:* | ||
cpe:2.3:a:iss:blackice_server_protection:3.6ccc:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://lists.grok.org.uk/pipermail/full-disclosure/2004-August/025112.html
- http://marc.info/?l=bugtraq&m=109223751031166&w=2
- http://www.securityfocus.com/bid/10915
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16959
- http://lists.grok.org.uk/pipermail/full-disclosure/2004-August/025112.html
- http://marc.info/?l=bugtraq&m=109223751031166&w=2
- http://www.securityfocus.com/bid/10915
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16959