Description: KF has reported a privilege escalation vulnerability in BlackICE PC Protection, allowing malicious users to gain SYSTEM privileges.
The problem is that "blackd.exe" contain a boundary error in the handling of certain arguments in the configuration files. The ".ini" files are writable by any users. It is possible to cause a buffer overflow by supplying a long string in the "packetLog.fileprefix" parameter. Malicious code placed in this parameter will be executed when a log entry is generated.
This has been reported to affect version 3.6.cbz, other versions may also be affected.
Solution: It has been reported that the built in BlackICE Application Protection does protect against this vulnerability.
Provided and/or discovered by: KF
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
