CVE-2009-1517

Name of the Vulnerable Software and Affected Versions: Symantec Norton Ghost version 14.0

Description: The issue concerns insecure methods in the Symantec.EasySetup.1 ActiveX control within the EasySetupInt.dll. This allows remote attackers to potentially cause a denial of service, leading to a browser crash, and possibly execute arbitrary code. The methods affected include (1) GetBackupLocationPath, (2) CallUninstall, (3) SetupDeleteVolume, (4) CanUseEasySetup, (5) CallAddInitialProtection, and (6) CallTour.

Recommendations: For Symantec Norton Ghost version 14.0, consider disabling the affected methods (GetBackupLocationPath, CallUninstall, SetupDeleteVolume, CanUseEasySetup, CallAddInitialProtection, CallTour) in the EasySetupInt.dll until a patch is available. Restrict access to the EasySetup wizard to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.