CVE-2005-2711

Name of the Vulnerable Software and Affected Versions ISS BlackIce version 3.6 ISS BlackICE PC Protection version 3.6 ISS Server Protection version 3.6 ISS Agent for Server version 3.6 ISS RealSecure Desktop versions 3.6 and 7.0

Description The issue allows local users to execute arbitrary programs as SYSTEM due to the failure to drop privileges before launching help from the "More Info" button in the "Application Protection" dialog.

Recommendations For ISS BlackIce version 3.6, consider restricting access to the "More Info" button in the "Application Protection" dialog until a fix is available. For ISS BlackICE PC Protection version 3.6, restrict the execution of arbitrary programs as SYSTEM by implementing proper privilege dropping mechanisms. For ISS Server Protection version 3.6, implement a fix to drop privileges before launching help from the "More Info" button. For ISS Agent for Server version 3.6, apply a patch or configuration change to ensure proper privilege handling. For ISS RealSecure Desktop versions 3.6 and 7.0, update the application to properly drop privileges before executing help functions.