CVE-2004-1714

Published: Aug 11, 2004Modified: Apr 16, 2026

7.1

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Exploitability: 1.8 / Impact: 5.2

Source: NVD

Description

BlackICE PC Protection and Server Protection installs (1) firewall.ini, (2) blackice.ini, (3) sigs.ini and (4) protect.ini with Everyone Full Control permissions, which allows local users to cause a denial of service (crash) or modify configuration, as demonstrated by modifying firewall.ini to contain a large firewall rule.

Affected (21)

Products: Iss: Blackice Pc Protection, Blackice Server Protection

Iss

2 products

Blackice Pc Protection

Blackice Server Protection

Configuration A

21 vulnerable

Vulnerable Software	Affected Versions
Iss Blackice Pc Protection	Version 3.6cbd
Iss Blackice Pc Protection	Version 3.6cbr
Iss Blackice Pc Protection	Version 3.6cbz
Iss Blackice Pc Protection	Version 3.6cca
Iss Blackice Pc Protection	Version 3.6ccb
Iss Blackice Pc Protection	Version 3.6ccc
Iss Blackice Pc Protection	Version 3.6ccd
Iss Blackice Pc Protection	Version 3.6cce
Iss Blackice Pc Protection	Version 3.6ccf
Iss Blackice Pc Protection	Version 3.6ccg
Iss Blackice Server Protection	Version 3.5cdf
Iss Blackice Server Protection	Version 3.6cbz
Iss Blackice Server Protection	Version 3.6cca
Iss Blackice Server Protection	Version 3.6ccb
Iss Blackice Server Protection	Version 3.6ccc
Iss Blackice Server Protection	Version 3.6ccd
Iss Blackice Server Protection	Version 3.6cce
Iss Blackice Server Protection	Version 3.6ccf
Iss Blackice Server Protection	Version 3.6ccg
Iss Blackice Server Protection	Version 3.6cch
Iss Blackice Server Protection	Version 3.6cno