CVE-2006-3999

EPSS 0.06%
Veröffentlicht 05.08.2006 01:04:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

ISS BlackICE PC Protection 3.6.cpj, 3.6.cpiE, and possibly earlier versions do not properly monitor the integrity of the pamversion.dll BlackICE library, which allows local users to subvert BlackICE by replacing pamversion.dll.  NOTE: in most cases, the attack would not cross privilege boundaries because replacing pamversion.dll requires administrative privileges. However, this issue is a vulnerability because BlackICE is intended to protect against certain rogue privileged actions.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Iss ≫ Blackice Pc Protection Version3.6cpie

Iss ≫ Blackice Pc Protection Version3.6cpj

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.06%	0.167

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.6	3.9	6.4	AV:L/AC:L/Au:N/C:P/I:P/A:P

http://securityreason.com/securityalert/1338

http://securitytracker.com/id?1016618

http://www.securityfocus.com/archive/1/441829/100/0/threaded

https://nvd.nist.gov/vuln/detail/CVE-2006-3999

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-3999

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-3999

EUVD