Vulnerabilities > CVE-2007-3314 - Buffer Overflow vulnerability in Altap Servant Salamander PE File Handling
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Stack-based buffer overflow in peviewer.spl in Altap Servant Salamander 2.5 with Portable Executable Viewer 2.02 (English Trial), and 2.0 with Portable Executable Viewer 1.00 (English Trial), allows remote attackers to execute arbitrary code via a long PDB debug filename in a PE file.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 |
Exploit-Db
description | Altap Salamander 2.5 PE Viewer Buffer Overflow. CVE-2007-3314. Local exploit for windows platform |
id | EDB-ID:16656 |
last seen | 2016-02-02 |
modified | 2010-12-16 |
published | 2010-12-16 |
reporter | metasploit |
source | https://www.exploit-db.com/download/16656/ |
title | Altap Salamander 2.5 PE Viewer Buffer Overflow |
Metasploit
description | This module exploits a buffer overflow in Altap Salamander <= v2.5. By creating a malicious file and convincing a user to view the file with the Portable Executable Viewer plugin within a vulnerable version of Salamander, the PDB file string is copied onto the stack and the SEH can be overwritten. |
id | MSF:EXPLOIT/WINDOWS/FILEFORMAT/ALTAP_SALAMANDER_PDB |
last seen | 2020-03-23 |
modified | 2020-01-15 |
published | 2009-08-30 |
references | |
reporter | Rapid7 |
source | https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/fileformat/altap_salamander_pdb.rb |
title | Altap Salamander 2.5 PE Viewer Buffer Overflow |
Packetstorm
data source | https://packetstormsecurity.com/files/download/83171/altap_salamander_pdb.rb.txt |
id | PACKETSTORM:83171 |
last seen | 2016-12-05 |
published | 2009-11-26 |
reporter | patrick |
source | https://packetstormsecurity.com/files/83171/Altap-Salamander-2.5-PE-Viewer-Buffer-Overflow.html |
title | Altap Salamander 2.5 PE Viewer Buffer Overflow |
Seebug
bulletinFamily | exploit |
description | No description provided by source. |
id | SSV:71164 |
last seen | 2017-11-19 |
modified | 2014-07-01 |
published | 2014-07-01 |
reporter | Root |
source | https://www.seebug.org/vuldb/ssvid-71164 |
title | Altap Salamander 2.5 PE Viewer Buffer Overflow |