Skip Ribbon Commands
Skip to main content
Computer Security Incident Response Team of Mauritius (CERT-MU)

VN-2017-13


Vulnerability in Norton Anti-Virus
Severity Rating: Medium
System Affected:  
 
  • Norton Download Manager version 5.6 and prior
 
Description:
A vulnerability was identified in Norton Anti-Virus that allow a remote user to execute arbitrary code on the target user's system.
A remote user can create a specially crafted DLL file that, when placed on the target user's system will cause the Norton Download Manager component to load the remote user's DLL instead of the intended DLL and can cause arbitrary code to be executed when the Norton Download Manager component is run by the target user.
Source:
Solution
Users are advised to apply updates.
More information is available on:
Symantec
 
 
Vendor Information
Norton
 
CVE Information
 
References
Security Tracker
 
 
Contact Information
 
Postal address
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street
Port Louis