ISS BlackICE PC Protection DLL faking of run-time linked libraries Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: ISS BlackICE PC Protection DLL faking of run-time linked libraries Vulnerability
From: David Matousek <david@xxxxxxxxxxxx>
Date: Tue, 01 Aug 2006 11:57:56 +0200
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.2; en-US; rv:1.8.0.1) Gecko/20060130 SeaMonkey/1.0

BlackICE does not protect pamversion.dll in its installation directory. And 
also because its component
protection fails to protect BlackICE processes this can be misused to inject 
fake DLL into BlackICE service.

The whole advisory with more details and source code is available here
http://www.matousec.com/info/advisories/BlackICE-DLL-faking-of-run-time-linked-libraries.php

Regards,


--
David Matousek

Founder and Chief Representative of Matousec - Transparent security
http://www.matousec.com/

Prev by Date: TSEP 0.9.4.2 <= Remote File Inclusion
Next by Date: WoW Roster <= 1.5.x Remote File Include (hsList.php)
Previous by thread: TSEP 0.9.4.2 <= Remote File Inclusion
Next by thread: [SECURITY] [DSA 1132-1] New apache2 packages fix buffer overflow
Index(es):
- Date
- Thread