LANDesk Management Suite Alert Service (aolnsrvr.exe) Remote Overflow

Critical Nessus Plugin ID 25085


The remote Windows host has an application that is affected by a buffer overflow vulnerability.


LANDesk Management Suite, used to automate system and security management tasks, is installed on the remote host.

The version of LANDesk Management Suite includes an instance of Intel Pro Alerting Proxy, which contains a stack-based buffer overflow vulnerability. An attacker may be able to leverage this issue by connecting to it over UDP port 65535 and sending sufficient data to overflow a 268 byte stack-based buffer to execute arbitrary code with LOCAL SYSTEM privileges.


Apply the latest Service Pack followed by hotfix or remove the Intel Pro Alerting Proxy software.

See Also

Plugin Details

Severity: Critical

ID: 25085

File Name: landesk_aolnsrvr_overflow.nasl

Version: $Revision: 1.13 $

Type: local

Agent: windows

Family: Windows

Published: 2007/04/24

Modified: 2016/10/27

Dependencies: 13855

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

Required KB Items: SMB/Registry/Enumerated

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2007/04/13

Vulnerability Publication Date: 2007/04/13

Exploitable With

Core Impact

Metasploit (LANDesk Management Suite 8.7 Alert Service Buffer Overflow)

Reference Information

CVE: CVE-2007-1674

BID: 23483

OSVDB: 34964