Unrated severityNVD Advisory· Published Dec 31, 2005· Updated Apr 16, 2026
CVE-2005-2711
CVE-2005-2711
Description
ISS BlackIce 3.6, as used in multiple products including BlackICE PC Protection, Server Protection, Agent for Server, and RealSecure Desktop 3.6 and 7.0, does not drop privileges before launching help from the "More Info" button in the "Application Protection" dialog, which allows local users to execute arbitrary programs as SYSTEM.
Affected products
6- cpe:2.3:a:iss:blackice_agent_server:*:*:*:*:*:*:*:*
cpe:2.3:a:iss:blackice_pc_protection:3.6:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:iss:blackice_pc_protection:3.6:*:*:*:*:*:*:*
- cpe:2.3:a:iss:blackice_pc_protection:3.6cpu:*:*:*:*:*:*:*
- cpe:2.3:a:iss:blackice_server_protection:*:*:*:*:*:*:*:*
cpe:2.3:a:iss:realsecure_desktop:3.6:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:iss:realsecure_desktop:3.6:*:*:*:*:*:*:*
- cpe:2.3:a:iss:realsecure_desktop:7.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- www.idefense.com/intelligence/vulnerabilities/display.phpnvdVendor Advisory
- secunia.com/advisories/19327nvd
- securitytracker.com/idnvd
- securitytracker.com/idnvd
- www.osvdb.org/24096nvd
- www.securityfocus.com/bid/17218nvd
- www.vupen.com/english/advisories/2006/1090nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/25423nvd
News mentions
0No linked articles in our index yet.