CVE-2006-4541

Name of the Vulnerable Software and Affected Versions BlackICE PC Protection versions 3.6.cpn, 3.6.cpj, 3.6.cpiE, and possibly 3.6 and earlier BlackICE PC Protection version 3.6.cqn

Description The issue allows local users to cause a denial of service, resulting in a crash, by providing a NULL third argument to the NtOpenSection API function.

Recommendations For BlackICE PC Protection versions 3.6.cpn, 3.6.cpj, 3.6.cpiE, 3.6.cqn, and possibly 3.6 and earlier, consider avoiding the use of the NtOpenSection API function with a NULL third argument until a patch is available. As a temporary workaround, consider restricting access to the RapDrv.sys driver to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.