COMMAND

	BlackICE Defender DoS, potential remote overflow ??

SYSTEMS AFFECTED

	 BlackICE Defender 2.9.caq and 2.9.cap, 3.1cap

	 Black ICE Agent version 3.1eaj

PROBLEM

	Matt Taylor posted :
	

	BlackICE can be remotely crashed using a very basic ping flood,  setting
	the packet size to about 10,000 bytes causes a Blue Screen of Death  (or
	immediate system reboot).
	

	 Update (06 February 2002)

	 ======

	

	Brandon Young [Stoic forty-four] added :
	

	If issuing the command ping -l 65000 -t X.X.X.X, Black  ICE  agent  dies
	but the computer is still up and running...

SOLUTION

	 Update (11 February 2002)

	 ======

	

	Get patch from :
	

	http://www.iss.net/support/consumer/BI_downloads.php