CVE-2017-13676

HIGH

Norton Remove & Reinstall < 4.4.0.58 - DLL Preloading

Title source: llm
STIX 2.1

Description

Norton Remove & Reinstall can be susceptible to a DLL preloading vulnerability. These types of issues occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead. Depending on how the application is configured, it will generally follow a specific search path to locate the DLL. The vulnerability can be exploited by a simple file write (or potentially an over-write) which results in a foreign DLL running under the context of the application. A Norton Remove & Reinstall update, version 4.4.0.58, has been released which addresses the aforementioned vulnerability.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/100939

Scores

CVSS v3 7.0
EPSS 0.0038
EPSS Percentile 30.1%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-94
Status published
Products (2)
norton/remove_\&_reinstall < -
Symantec Corporation/Norton Remove & Reinstall Prior to 4.4.0.58
Published Sep 28, 2017
Tracked Since Feb 18, 2026