Weekly Vulnerabilities Reports > August 9 to 15, 2004
Overview
1 new vulnerabilities reported during this period, including 0 critical vulnerabilities and 1 high severity vulnerabilities. This weekly summary report vulnerabilities in 2 products from 1 vendors including and ISS. Vulnerabilities are notably categorized as and "Incorrect Permission Assignment for Critical Resource".
- ISS has the most reported vulnerabilities, with 1 reported vulnerabilities.
TOTAL
VULNERABILITIES
VULNERABILITIES
CRITICAL RISK
VULNERABILITIES
VULNERABILITIES
HIGH RISK
VULNERABILITIES
VULNERABILITIES
MEDIUM RISK
VULNERABILITIES
VULNERABILITIES
LOW RISK
VULNERABILITIES
VULNERABILITIES
Vulnerability Details
The following table list reported vulnerabilities for the period covered by this report:
Expand/Hide
0 Critical Vulnerabilities
| DATE | CVE | VENDOR | VULNERABILITY | CVSS |
|---|
Expand/Hide
1 High Vulnerabilities
| DATE | CVE | VENDOR | VULNERABILITY | CVSS |
|---|---|---|---|---|
| 2004-08-11 | CVE-2004-1714 | ISS | Incorrect Permission Assignment for Critical Resource vulnerability in ISS Blackice PC Protection and Blackice Server Protection BlackICE PC Protection and Server Protection installs (1) firewall.ini, (2) blackice.ini, (3) sigs.ini and (4) protect.ini with Everyone Full Control permissions, which allows local users to cause a denial of service (crash) or modify configuration, as demonstrated by modifying firewall.ini to contain a large firewall rule. | 7.1 |
Expand/Hide
0 Medium Vulnerabilities
| DATE | CVE | VENDOR | VULNERABILITY | CVSS |
|---|
Expand/Hide
0 Low Vulnerabilities
| DATE | CVE | VENDOR | VULNERABILITY | CVSS |
|---|