CVE-2006-7129

ISS BlackICE PC Protection <3.6 - Auth Bypass

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-7129. PoCs published by Matousec Transparent security.

AI-analyzed exploit summary The provided text describes a file-deletion vulnerability in Internet Security Systems (ISS) BlackICE PC Protection versions 3.6.cpu and 3.6.cpj. It references a security advisory but does not include actual exploit code or technical details for execution.

Description

ISS BlackICE PC Protection 3.6 cpj and cpu, and possibly earlier versions, allows local users to bypass the protection scheme by using the ZwDeleteFile API function to delete the critical filelock.txt file, which stores information about protected files.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Matousec Transparent security · textlocalmultiple

https://www.exploit-db.com/exploits/28817

View Code ZIP pw:eip

The provided text describes a file-deletion vulnerability in Internet Security Systems (ISS) BlackICE PC Protection versions 3.6.cpu and 3.6.cpj. It references a security advisory but does not include actual exploit code or technical details for execution.

Classification

Writeup 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: Internet Security Systems (ISS) BlackICE PC Protection 3.6.cpu, 3.6.cpj

No auth needed

Prerequisites: Access to the target system to exploit the file-deletion vulnerability

MITRE ATT&CK