Symantec Ghost EasySetup Wizard Lets Remote Users Deny Service
|
|
SecurityTracker Alert ID: 1022120 |
|
SecurityTracker URL: http://securitytracker.com/id/1022120
|
|
CVE Reference:
CVE-2009-1517
(Links to External Site)
|
Updated: May 5 2009
|
Original Entry Date: Apr 24 2009
|
Impact:
Denial of service via network
|
Exploit Included: Yes
|
|
Description:
A vulnerability was reported in Symantec Ghost. A remote user can cause denial of service conditions.
A remote user can create specially crafted HTML that, when loaded by the target user, will invoke the 'EasySetupInt.dll' ActiveX control and cause denial of service conditions.
The CLSID of the vulnerable control is: 7972D5BE-2213-4B28-884C-F8F82432EAA5
'EasySetupInt.dll' version 14.0.4.30167 is affected.
shinnai reported this vulnerability.
The original advisory is available at:
http://www.shinnai.net/xplits/TXT_Gl6RHStS23c9DANArcJE.html
|
Impact:
A remote user can cause denial of service conditions.
|
Solution:
No solution was available at the time of this entry.
|
Vendor URL: www.symantec.com/ (Links to External Site)
|
Cause:
Not specified
|
Underlying OS:
Windows (Any)
|
|
Message History:
None.
|
Source Message Contents
|
|
|
[Original Message Not Available for Viewing]
|
|
