Vulnerabilities > CVE-2007-3314 - Buffer Overflow vulnerability in Altap Servant Salamander PE File Handling

CVSS 6.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

altap

exploit available

metasploit

NVD

Published: 2007-06-21

Updated: 2017-07-29

Summary

Stack-based buffer overflow in peviewer.spl in Altap Servant Salamander 2.5 with Portable Executable Viewer 2.02 (English Trial), and 2.0 with Portable Executable Viewer 1.00 (English Trial), allows remote attackers to execute arbitrary code via a long PDB debug filename in a PE file.

Vulnerable Configurations

Part	Description	Count
Application	Altap Altap Portable Executable Viewer 2.02 Altap Portable Executable Viewer 1.00 Altap Servant Salamander 2.5 Altap Servant Salamander 2.0	4

Exploit-Db

description	Altap Salamander 2.5 PE Viewer Buffer Overflow. CVE-2007-3314. Local exploit for windows platform
id	EDB-ID:16656
last seen	2016-02-02
modified	2010-12-16
published	2010-12-16
reporter	metasploit
source	https://www.exploit-db.com/download/16656/
title	Altap Salamander 2.5 PE Viewer Buffer Overflow

Metasploit

description	This module exploits a buffer overflow in Altap Salamander <= v2.5. By creating a malicious file and convincing a user to view the file with the Portable Executable Viewer plugin within a vulnerable version of Salamander, the PDB file string is copied onto the stack and the SEH can be overwritten.
id	MSF:EXPLOIT/WINDOWS/FILEFORMAT/ALTAP_SALAMANDER_PDB
last seen	2020-03-23
modified	2020-01-15
published	2009-08-30
references	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3314 http://vuln.sg/salamander25-en.html
reporter	Rapid7
source	https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/fileformat/altap_salamander_pdb.rb
title	Altap Salamander 2.5 PE Viewer Buffer Overflow

Packetstorm

data source	https://packetstormsecurity.com/files/download/83171/altap_salamander_pdb.rb.txt
id	PACKETSTORM:83171
last seen	2016-12-05
published	2009-11-26
reporter	patrick
source	https://packetstormsecurity.com/files/83171/Altap-Salamander-2.5-PE-Viewer-Buffer-Overflow.html
title	Altap Salamander 2.5 PE Viewer Buffer Overflow

Seebug

bulletinFamily	exploit
description	No description provided by source.
id	SSV:71164
last seen	2017-11-19
modified	2014-07-01
published	2014-07-01
reporter	Root
source	https://www.seebug.org/vuldb/ssvid-71164
title	Altap Salamander 2.5 PE Viewer Buffer Overflow

Summary

Vulnerable Configurations

Exploit-Db

Metasploit

Packetstorm

Seebug

References