Signature Detail
Short Name |
APP:SYMC:EASYSETUP-ACTIVEX |
|---|---|
Severity |
Medium |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Symantec Norton Ghost EasySetupInt.dll ActiveX |
Release Date |
2012/10/31 |
Update Number |
2199 |
Supported Platforms |
idp-4.0.110090709+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
APP: Symantec Norton Ghost EasySetupInt.dll ActiveX
This signature detects attempts to use unsafe ActiveX controls against Symantec Norton Ghost EasySetup Wizard. An attacker can create a malicious Web site containing Web pages with dangerous ActiveX controls, which if accessed by a victim, allows the attacker to gain control of the victim's client browser.
Extended Description
Symantec Norton Ghost EasySetup Wizard ActiveX control is prone to multiple denial-of-service vulnerabilities. A successful attack allows an attacker to crash the application using the affected control (typically Internet Explorer), causing denial-of-service conditions. The attacker may also be able to run arbitrary code, but this has not been confirmed. These issues are reported to affect 'EasySetupInt.dll' 14.0.4.30167; other versions may also be affected.
Affected Products
- Symantec Norton Ghost 10.0
- Symantec Norton Ghost 10.1
- Symantec Norton Ghost 12.0
- Symantec Norton Ghost 13.0
- Symantec Norton Ghost 14.0
References
- BugTraq: 34696
- CVE: CVE-2009-1517