Vulnerabilities > CVE-2007-1674 - Buffer Overflow vulnerability in Landesk Management Suite 8.7
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Stack-based buffer overflow in the Alert Service (aolnsrvr.exe) in LANDesk Management Suite 8.7 allows remote attackers to execute arbitrary code via a crafted packet to port 65535/UDP.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
description LanDesk Management Suite 8.7 Alert Service AOLSRVR.EXE Buffer Overflow Vulnerability. CVE-2007-1674. Remote exploit for windows platform id EDB-ID:29853 last seen 2016-02-03 modified 2007-04-13 published 2007-04-13 reporter Aaron Portnoy source https://www.exploit-db.com/download/29853/ title LanDesk Management Suite 8.7 Alert Service AOLSRVR.EXE Buffer Overflow Vulnerability description LANDesk Management Suite 8.7 Alert Service Buffer Overflow. CVE-2007-1674. Remote exploit for windows platform id EDB-ID:16457 last seen 2016-02-01 modified 2010-05-09 published 2010-05-09 reporter metasploit source https://www.exploit-db.com/download/16457/ title LANDesk Management Suite 8.7 Alert Service Buffer Overflow
Metasploit
| description | This module exploits a stack buffer overflow in LANDesk Management Suite 8.7. By sending an overly long string to the Alert Service, a buffer is overwritten and arbitrary code can be executed. |
| id | MSF:EXPLOIT/WINDOWS/MISC/LANDESK_AOLNSRVR |
| last seen | 2020-06-14 |
| modified | 2017-07-24 |
| published | 2007-04-15 |
| references | |
| reporter | Rapid7 |
| source | https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/misc/landesk_aolnsrvr.rb |
| title | LANDesk Management Suite 8.7 Alert Service Buffer Overflow |
Nessus
| NASL family | Windows |
| NASL id | LANDESK_AOLNSRVR_OVERFLOW.NASL |
| description | LANDesk Management Suite, used to automate system and security management tasks, is installed on the remote host. The version of LANDesk Management Suite includes an instance of Intel Pro Alerting Proxy, which contains a stack-based buffer overflow vulnerability. An attacker may be able to leverage this issue by connecting to it over UDP port 65535 and sending sufficient data to overflow a 268 byte stack-based buffer to execute arbitrary code with LOCAL SYSTEM privileges. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 25085 |
| published | 2007-04-24 |
| reporter | This script is Copyright (C) 2007-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/25085 |
| title | LANDesk Management Suite Alert Service (aolnsrvr.exe) Remote Overflow |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/83169/landesk_aolnsrvr.rb.txt |
| id | PACKETSTORM:83169 |
| last seen | 2016-12-05 |
| published | 2009-11-26 |
| reporter | MC |
| source | https://packetstormsecurity.com/files/83169/LANDesk-Management-Suite-8.7-Alert-Service-Buffer-Overflow.html |
| title | LANDesk Management Suite 8.7 Alert Service Buffer Overflow |
Saint
| bid | 23483 |
| description | LANDesk Management Suite Alert Service buffer overflow |
| id | misc_landesksuiteoverflow |
| osvdb | 34964 |
| title | landesk_management_alert |
| type | remote |
References
- http://kb.landesk.com/display/4n/kb/article.asp?aid=4142
- http://osvdb.org/34964
- http://secunia.com/advisories/24892
- http://www.securityfocus.com/archive/1/465643/100/0/threaded
- http://www.securityfocus.com/bid/23483
- http://www.securitytracker.com/id?1017912
- http://www.tippingpoint.com/security/advisories/TSRT-07-04.html
- http://www.vupen.com/english/advisories/2007/1391
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33657