CVE-2017-13676

Name of the Vulnerable Software and Affected Versions Norton Remove & Reinstall versions prior to 4.4.0.58

Description The issue occurs due to a DLL preloading vulnerability, where an application can be tricked into using a malicious DLL instead of the intended one. This happens when the application follows a specific search path to locate the DLL, allowing an attacker to provide a malicious DLL for execution. The vulnerability can be exploited through a simple file write or overwrite, resulting in the foreign DLL running under the context of the application.

Recommendations For versions prior to 4.4.0.58, update to version 4.4.0.58 to address the vulnerability.