CVE-2017-13676
HIGHNorton Remove & Reinstall < 4.4.0.58 - DLL Preloading
Title source: llmDescription
Norton Remove & Reinstall can be susceptible to a DLL preloading vulnerability. These types of issues occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead. Depending on how the application is configured, it will generally follow a specific search path to locate the DLL. The vulnerability can be exploited by a simple file write (or potentially an over-write) which results in a foreign DLL running under the context of the application. A Norton Remove & Reinstall update, version 4.4.0.58, has been released which addresses the aforementioned vulnerability.
References (2)
Core 2
Core References
Mitigation, VDB Entry, Vendor Advisory x_refsource_confirm
https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20170926_00
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/100939
Scores
CVSS v3
7.0
EPSS
0.0038
EPSS Percentile
30.1%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-94
Status
published
Products (2)
norton/remove_\&_reinstall
< -
Symantec Corporation/Norton Remove & Reinstall
Prior to 4.4.0.58
Published
Sep 28, 2017
Tracked Since
Feb 18, 2026