CVE-2004-2126

Name of the Vulnerable Software and Affected Versions BlackICE PC Protection versions 3.6 and earlier

Description The issue allows local users to modify configuration or possibly execute arbitrary code by exploiting vulnerabilities in the .INI parsers, due to insecure permissions set for .INI files such as blackice.ini, firewall.ini, protect.ini, or sigs.ini.

Recommendations For BlackICE PC Protection versions 3.6 and earlier, consider restricting access to the .INI files to prevent modification and potential code execution until a proper fix is applied. As a temporary workaround, manually set secure permissions for the .INI files to minimize the risk of exploitation.