Signature Detail

APP: LANDesk Management Suite Alert Service Stack Overflow

This signature detects attempts to exploit a known vulnerability in LANDesk Management Suite. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server.

Extended Description

LANDesk Management Suite is prone to a remote stack-based buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges. Successfully exploiting this issue would result in the complete compromise of affected computers. Failed exploit attempts will result in a denial of service. This issue affects LANDesk Management Suite 8.7; prior versions may also be affected.

Affected Products

• LANDesk Software LANDesk Management Suite 8.7

References

• BugTraq: 23483
• CVE: CVE-2007-1674
• URL: http://www.securityfocus.com/archive/1/archive/1/465643/100/0/threaded
• URL: http://securitytracker.com/alerts/2007/Apr/1017912.html
• URL: http://www.vupen.com/english/advisories/2007/1391