BlackICE allows local user to become system
If you look at task manager you will note that blackd.exe is running as SYSTEM. After some toying with the GUI we discovered a buffer overflow in the packetLog functionality. The overflow can be triggered with the following .ini options. A 217 Character log prefix makes BlackICE blackd crash with the EIP and ECX both overwritten with user supplied data. We simply run the BlackICE exploit that we prepared for the above condition. Source http://www.secnetops.com/research . I am including a text file in details which you can also get from above mentioned link. But you have to become a member. Enjoy and patch your BlackICE. If possible.