PT-2017-13008 · Norton · Norton Remove & Reinstall

Published

2017-09-27

Updated

2017-10-06

CVE-2017-13676

CVSS v3.1

7.0

High

Vector

AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Norton Remove & Reinstall versions prior to 4.4.0.58

Description The issue occurs due to a DLL preloading vulnerability, where an application can be tricked into using a malicious DLL instead of the intended one. This happens when the application follows a specific search path to locate the DLL, allowing an attacker to provide a malicious DLL for execution. The vulnerability can be exploited through a simple file write or overwrite, resulting in the foreign DLL running under the context of the application.

Recommendations For versions prior to 4.4.0.58, update to version 4.4.0.58 to address the vulnerability.

Fix

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2017-13676

Affected Products

Norton Remove & Reinstall

PT-2017-13008 · Norton · Norton Remove & Reinstall

CVE-2017-13676

Weakness Enumeration

Related Identifiers

Affected Products

References · 4