Page 1 of 2 12 LastLast
Results 1 to 10 of 16

Thread: BlackIce Vulnerability

  1. #1
    Forgotten Ghost RogueSpy's Avatar
    Join Date
    Aug 2001
    Location
    Cyberspace
    Posts
    783

    BlackIce Vulnerability

    Whoever stated that BlackIce is secure was wrong. Check this out.

    bugtraq id 4025
    object
    class Failure to Handle Exceptional Conditions
    cve CVE-MAP-NOMATCH

    remote Yes
    local No
    published Feb 04, 2002
    updated Feb 06, 2002
    vulnerable Internet Security Systems BlackIce Agent 3.0
    Here is the link. . .

    http://www.securityfocus.com/bid/4025

    Enjoy.
    "Never give in-never, never, never, in nothing great or small, large or petty, never give in to convictions of honor and good sense. Never yield to force; never yield to the apparently overwhelming might of the enemy!" - Winston Churchill

  2. #2
    Senior Member
    Join Date
    Aug 2001
    Posts
    503
    But is ANYTHING truly secure? As long as there are computers, there will be ways to break into them. Always.

    --PhirePhreak
    I know you\'re out there. I can feel you now. I know that you\'re afraid. You\'re afraid of us. You\'re afraid of change. I don\'t know the future. I didn\'t come here to tell you how this is going to end. I came here to tell you how it\'s going to begin. I\'m going to hang up this phone, and then I\'m going to show these people what you don\'t want them to see. I\'m going to show them a world without you, a world without rules and controls, without borders or boundaries. A world where anything is possible. Where we go from there is a choice I leave to you.

  3. #3
    AntiOnline Senior Member
    Join Date
    Oct 2001
    Posts
    514
    Haha I have always been the one saying BlackIce was not secure. I myself switched over to ZoneAlarm after a while from BlackIce because of the security problem.
    [shadow]uraloony, Founder of Loony Services[/shadow]
    Visit us at
    [gloworange]http://www.loonyservices.com/[/gloworange]

  4. #4
    Senior Member
    Join Date
    Dec 2001
    Posts
    1,193
    At one time they had a good reputation. Maybe the investment is not there anymore. too bad
    Trappedagainbyperfectlogic.

  5. #5
    Priapistic Monk KorpDeath's Avatar
    Join Date
    Dec 2001
    Posts
    2,628
    Let me just say the only personal firewall I recommend is Sygate's. As I've said before you can test the ability of your firewall at Sygate's website www.sygate.com for holes or you can use Tom Liston's Outbound program at www.hackbusters.net for application testing.

    I've personally tested the 6 biggest personal firewalls and the only one that came out unscathed was Sygate's. In attacks and in application checking. It really works well.

    Most, unfortunately, crash open which in my pinion is NOT good.
    Mankind have a great aversion to intellectual labor; but even supposing knowledge to be easily attainable, more people would be content to be ignorant than would take even a little trouble to acquire it.
    - Samuel Johnson

  6. #6
    Forgotten Ghost RogueSpy's Avatar
    Join Date
    Aug 2001
    Location
    Cyberspace
    Posts
    783
    I've personally tested the 6 biggest personal firewalls and the only one that came out unscathed was Sygate's.
    -posted by KorpDeath
    Um. . . . Did you test NeoWatch? I had it tested by a few hackers & they couldnt get through.
    "Never give in-never, never, never, in nothing great or small, large or petty, never give in to convictions of honor and good sense. Never yield to force; never yield to the apparently overwhelming might of the enemy!" - Winston Churchill

  7. #7
    Senior Member
    Join Date
    Dec 2001
    Posts
    1,193

    Question

    RogueSpy do you have link for this product? never heard of it.
    Trappedagainbyperfectlogic.

  8. #8
    Priapistic Monk KorpDeath's Avatar
    Join Date
    Dec 2001
    Posts
    2,628
    Originally posted by RogueSpy


    Um. . . . Did you test NeoWatch? I had it tested by a few hackers & they couldnt get through.
    Actually, no. But I did have other requirements for my tests. There had to be a way to remotely administer the policies, etc. etc. They had to have an enterprise management solution. Does Neowatch provide that?

    I'll certainly go look it up. Thanks.
    Mankind have a great aversion to intellectual labor; but even supposing knowledge to be easily attainable, more people would be content to be ignorant than would take even a little trouble to acquire it.
    - Samuel Johnson

  9. #9
    Priapistic Monk KorpDeath's Avatar
    Join Date
    Dec 2001
    Posts
    2,628
    Right off the bat I see a problem with Neowatch. No application based policies that I see.

    Hey Rogue, have you run Outbound on that firewall? www.hackbusters.net

    Let me know the results, if you would be so kind.
    Mankind have a great aversion to intellectual labor; but even supposing knowledge to be easily attainable, more people would be content to be ignorant than would take even a little trouble to acquire it.
    - Samuel Johnson

  10. #10
    Forgotten Ghost RogueSpy's Avatar
    Join Date
    Aug 2001
    Location
    Cyberspace
    Posts
    783
    Im at college right now. . . but once I get home I'll d/l OB & test it out. Thanks.
    "Never give in-never, never, never, in nothing great or small, large or petty, never give in to convictions of honor and good sense. Never yield to force; never yield to the apparently overwhelming might of the enemy!" - Winston Churchill

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •