CVE-2006-3999

EPSS 0.06%
Published 05.08.2006 01:04:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

ISS BlackICE PC Protection 3.6.cpj, 3.6.cpiE, and possibly earlier versions do not properly monitor the integrity of the pamversion.dll BlackICE library, which allows local users to subvert BlackICE by replacing pamversion.dll.  NOTE: in most cases, the attack would not cross privilege boundaries because replacing pamversion.dll requires administrative privileges. However, this issue is a vulnerability because BlackICE is intended to protect against certain rogue privileged actions.

Affected products Warnungen 0 Metrics 2 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Iss ≫ Blackice Pc Protection Version3.6cpie

Iss ≫ Blackice Pc Protection Version3.6cpj

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.06%	0.167

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.6	3.9	6.4	AV:L/AC:L/Au:N/C:P/I:P/A:P

http://securityreason.com/securityalert/1338

http://securitytracker.com/id?1016618

http://www.securityfocus.com/archive/1/441829/100/0/threaded

https://nvd.nist.gov/vuln/detail/CVE-2006-3999

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-3999

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-3999

EUVD