Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

ISS BlackICE PC Protection DLL faking of run-time linked libraries Vulnerability
From: David Matousek <david () matousec com>
Date: Tue, 01 Aug 2006 11:57:56 +0200
BlackICE does not protect pamversion.dll in its installation directory. And also because its component
protection fails to protect BlackICE processes this can be misused to inject fake DLL into BlackICE service.

The whole advisory with more details and source code is available here
http://www.matousec.com/info/advisories/BlackICE-DLL-faking-of-run-time-linked-libraries.php

Regards,


--
David Matousek

Founder and Chief Representative of Matousec - Transparent security
http://www.matousec.com/

  By Date           By Thread  

Current thread:
  • ISS BlackICE PC Protection DLL faking of run-time linked libraries Vulnerability David Matousek (Aug 01)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]