Norton Remove / Reinstall 4.4.0 code injection

entryeditHistoryDiffjsonxmlCTI

A vulnerability classified as problematic has been found in Norton Remove and Reinstall 4.4.0. This affects an unknown functionality. Upgrading to version 4.4.0.58 eliminates this vulnerability.

Field09/28/2017 11:11 AM11/20/2019 09:22 AM
vendorNortonNorton
nameRemove / ReinstallRemove / Reinstall
version4.4.04.4.0
cwe94 (privilege escalation)94 (privilege escalation)
risk11
historic00
cvss2_vuldb_basescore4.14.1
cvss2_vuldb_tempscore3.63.6
cvss2_vuldb_avLL
cvss2_vuldb_acMM
cvss2_vuldb_auSS
cvss2_vuldb_ciPP
cvss2_vuldb_iiPP
cvss2_vuldb_aiPP
cvss2_nvd_avLL
cvss2_nvd_acMM
cvss2_nvd_auNN
cvss2_nvd_ciPP
cvss2_nvd_iiPP
cvss2_nvd_aiPP
cvss3_meta_basescore6.16.1
cvss3_meta_tempscore5.95.9
cvss3_vuldb_basescore5.35.3
cvss3_vuldb_tempscore5.15.1
cvss3_vuldb_avLL
cvss3_vuldb_acLL
cvss3_vuldb_prLL
cvss3_vuldb_uiNN
cvss3_vuldb_sUU
cvss3_vuldb_cLL
cvss3_vuldb_iLL
cvss3_vuldb_aLL
cvss3_nvd_avLL
cvss3_nvd_acHH
cvss3_nvd_prLL
cvss3_nvd_uiNN
cvss3_nvd_sUU
cvss3_nvd_cHH
cvss3_nvd_iHH
cvss3_nvd_aHH
date1506556800 (09/28/2017)1506556800 (09/28/2017)
urlhttps://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20170926_00https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20170926_00
price_0day$0-$5k$0-$5k
nameUpgradeUpgrade
upgrade_version4.4.0.584.4.0.58
cveCVE-2017-13676CVE-2017-13676
cve_assigned15035328001503532800
cve_nvd_published15064704001506470400
cve_nvd_summaryNorton Remove & Reinstall can be susceptible to a DLL preloading vulnerability. These types of issues occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead. Depending on how the application is configured, it will generally follow a specific search path to locate the DLL. The vulnerability can be exploited by a simple file write (or potentially an over-write) which results in a foreign DLL running under the context of the application. A Norton Remove & Reinstall update, version 4.4.0.58, has been released which addresses the aforementioned vulnerability.Norton Remove & Reinstall can be susceptible to a DLL preloading vulnerability. These types of issues occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead. Depending on how the application is configured, it will generally follow a specific search path to locate the DLL. The vulnerability can be exploited by a simple file write (or potentially an over-write) which results in a foreign DLL running under the context of the application. A Norton Remove & Reinstall update, version 4.4.0.58, has been released which addresses the aforementioned vulnerability.
securityfocus100939100939
securityfocus_titleSymantec Norton Remove and Reinstall DLL Loading CVE-2017-13676 Local Code Execution VulnerabilitySymantec Norton Remove and Reinstall DLL Loading CVE-2017-13676 Local Code Execution Vulnerability
locationWebsiteWebsite
cvss2_vuldb_eNDND
cvss2_vuldb_rlOFOF
cvss2_vuldb_rcNDND
cvss3_vuldb_eXX
cvss3_vuldb_rlOO
cvss3_vuldb_rcXX
0day_days11
cvss3_nvd_basescore7.07.0
discoverydate1506384000
person_nameKushal Arvind Shah
company_nameFortinet's FortiGuard Labs
confirm_urlhttps://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20170926_00
securityfocus_date1506384000 (09/26/2017)
securityfocus_classUnknown
openvas_id900934
openvas_filenamegb_norton_rnr_dll_loading_code_exec_vuln.nasl
openvas_titleNorton Remove & Reinstall DLL Preloading Code Execution Vulnerability
openvas_familyGeneral

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!