Vulnerability Name:

CVE-2005-2711 (CCN-25423)

Assigned:2005-12-31
Published:2005-12-31
Updated:2017-07-11
Summary:ISS BlackIce 3.6, as used in multiple products including BlackICE PC Protection, Server Protection, Agent for Server, and RealSecure Desktop 3.6 and 7.0, does not drop privileges before launching help from the "More Info" button in the "Application Protection" dialog, which allows local users to execute arbitrary programs as SYSTEM.
CVSS v3 Severity:9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
7.2 High (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Privileges
References:Source: MITRE
Type: CNA
CVE-2005-2711

Source: CCN
Type: SA19327
ISS Products Application Protection Module Privilege Escalation

Source: SECUNIA
Type: UNKNOWN
19327

Source: CCN
Type: SECTRACK ID: 1015820
RealSecure Desktop Help System Lets Local Users Gain Elevated Privileges

Source: SECTRACK
Type: UNKNOWN
1015820

Source: CCN
Type: SECTRACK ID: 1015821
BlackICE Help System Lets Local Users Gain Elevated Privileges

Source: SECTRACK
Type: UNKNOWN
1015821

Source: IDEFENSE
Type: Vendor Advisory
20060323 ISS Multiple Products Local Privilege Escalation Vulnerability

Source: CCN
Type: Internet Security Systems, Inc. Web site
Products

Source: OSVDB
Type: UNKNOWN
24096

Source: CCN
Type: OSVDB ID: 24096
ISS Multiple Products Application Protection Module Local Privilege Escalation

Source: BID
Type: UNKNOWN
17218

Source: CCN
Type: BID-17218
Internet Security Systems BlackICE and RealSecure Desktop Local Privilege Escalation Vulnerability

Source: VUPEN
Type: UNKNOWN
ADV-2006-1090

Source: XF
Type: UNKNOWN
blackice-appprotection-privilege-escalation(25423)

Source: XF
Type: UNKNOWN
blackice-appprotection-privilege-escalation(25423)

Source: CCN
Type: iDEFENSE Security Advisory: 03.23.06
ISS Multiple Products Local Privilege Escalation Vulnerability

Vulnerable Configuration:Configuration 1:
  • cpe:/a:iss:blackice_agent_server:*:*:*:*:*:*:*:*
  • OR cpe:/a:iss:blackice_pc_protection:3.6:*:*:*:*:*:*:*
  • OR cpe:/a:iss:blackice_pc_protection:3.6cpu:*:*:*:*:*:*:*
  • OR cpe:/a:iss:blackice_server_protection:*:*:*:*:*:*:*:*
  • OR cpe:/a:iss:realsecure_desktop:3.6:*:*:*:*:*:*:*
  • OR cpe:/a:iss:realsecure_desktop:7.0:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:ibm:iss_blackice_server_protection:3.5:cdf:*:*:*:*:*:*
  • OR cpe:/a:ibm:iss_blackice_pc_protection:3.6:*:*:*:*:*:*:*
  • OR cpe:/a:iss:blackice_agent_for_server:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:iss_realsecure_desktop:3.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:iss_realsecure_desktop:7.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    iss blackice agent server *
    iss blackice pc protection 3.6
    iss blackice pc protection 3.6cpu
    iss blackice server protection *
    iss realsecure desktop 3.6
    iss realsecure desktop 7.0
    ibm iss blackice server protection 3.5 cdf
    ibm iss blackice pc protection 3.6
    iss blackice agent for server 3.0
    ibm iss realsecure desktop 3.6
    ibm iss realsecure desktop 7.0