CVE-2009-1517

Symantec Norton Ghost 14.0 - Remote Code Execution via EasySetup ActiveX Control Methods

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1517. PoCs published by shinnai.

AI-analyzed exploit summary This exploit targets a vulnerability in Norton Ghost's EasySetupInt.dll (version 14.0.4.30167) via an ActiveX control. It triggers a DoS by calling the 'SetupDeleteVolume' method, which leads to a crash due to a NULL pointer dereference.

Description

Multiple insecure method vulnerabilities in the Symantec.EasySetup.1 ActiveX control in EasySetupInt.dll 14.0.4.30167 in the EasySetup wizard in Symantec Norton Ghost 14.0 allow remote attackers to cause a denial of service (browser crash) and possibly execute arbitrary code via unspecified input to the (1) GetBackupLocationPath, (2) CallUninstall, (3) SetupDeleteVolume, (4) CanUseEasySetup, (5) CallAddInitialProtection, and (6) CallTour methods.

Exploits (1)

exploitdb WORKING POC VERIFIED

by shinnai · textdoswindows

https://www.exploit-db.com/exploits/8523

View Code ZIP pw:eip

This exploit targets a vulnerability in Norton Ghost's EasySetupInt.dll (version 14.0.4.30167) via an ActiveX control. It triggers a DoS by calling the 'SetupDeleteVolume' method, which leads to a crash due to a NULL pointer dereference.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Norton Ghost EasySetupInt.dll 14.0.4.30167

No auth needed

Prerequisites: Victim must visit a malicious webpage using Internet Explorer · ActiveX control must be enabled

MITRE ATT&CK