LanDesk Management Suite Alert Service AOLSRVR.EXE Buffer Overflow Vulnerability
BID:23483
Info
LanDesk Management Suite Alert Service AOLSRVR.EXE Buffer Overflow Vulnerability
| Bugtraq ID: | 23483 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-1674 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 13 2007 12:00AM |
| Updated: | Jan 31 2008 03:27AM |
| Credit: | Aaron Portnoy is credited with the discovery of this vulnerability. |
| Vulnerable: |
LANDesk Software LANDesk Management Suite 8.7 |
| Not Vulnerable: | |
Discussion
LanDesk Management Suite Alert Service AOLSRVR.EXE Buffer Overflow Vulnerability
LANDesk Management Suite is prone to a remote stack-based buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.
An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges. Successfully exploiting this issue would result in the complete compromise of affected computers. Failed exploit attempts will result in a denial of service.
This issue affects LANDesk Management Suite 8.7; prior versions may also be affected.
LANDesk Management Suite is prone to a remote stack-based buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.
An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges. Successfully exploiting this issue would result in the complete compromise of affected computers. Failed exploit attempts will result in a denial of service.
This issue affects LANDesk Management Suite 8.7; prior versions may also be affected.
Exploit / POC
LanDesk Management Suite Alert Service AOLSRVR.EXE Buffer Overflow Vulnerability
An attacker can exploit this issue by using standard network utilities.
The following exploit code is available as a module for the Metasploit Framework:
An attacker can exploit this issue by using standard network utilities.
The following exploit code is available as a module for the Metasploit Framework:
Solution / Fix
LanDesk Management Suite Alert Service AOLSRVR.EXE Buffer Overflow Vulnerability
Solution:
The vendor released an update to address this issue. Please contact the vendor for information on how to obtain and apply this update.
Solution:
The vendor released an update to address this issue. Please contact the vendor for information on how to obtain and apply this update.
References
LanDesk Management Suite Alert Service AOLSRVR.EXE Buffer Overflow Vulnerability
References:
References:
- LANDesk Management Suite Security Announcement (LANDesk Software )
- TSRT-07-04: LANDesk Management Suite Alert Service Stack Overflow Vulnerability (Tipping Point Security )
- Vendor Homepage (LANDesk Software)