Internet Security Systems 3.6 - 'ZWDeleteFile()' Arbitrary File Deletion

EDB-ID:

28817




Platform:

Multiple

Date:

2006-10-16


source: https://www.securityfocus.com/bid/20546/info

Internet Security Systems (ISS) BlackICE PC Protection is prone to a file-deletion vulnerability.

An attacker can exploit this issue to delete arbitrary files within the context of the affected application. This could lead to other attacks. 

Versions 3.6.cpu, 3.6.cpj are vulnerable to this issue; other versions may also be affected.

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/28817.zip