CVE-2007-1674

LANDesk Management Suite 8.7 - Remote Code Execution via Crafted UDP Packet to Alert Service

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2007-1674. PoCs published by Metasploit, Aaron Portnoy, including Metasploit module exploits/windows/misc/landesk_aolnsrvr.

AI-analyzed exploit summary This exploit targets a stack buffer overflow in LANDesk Management Suite 8.7's Alert Service via UDP port 65535. It includes techniques to bypass NX (DEP) on certain targets and delivers a payload for remote code execution.

Description

Stack-based buffer overflow in the Alert Service (aolnsrvr.exe) in LANDesk Management Suite 8.7 allows remote attackers to execute arbitrary code via a crafted packet to port 65535/UDP.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16457

This exploit targets a stack buffer overflow in LANDesk Management Suite 8.7's Alert Service via UDP port 65535. It includes techniques to bypass NX (DEP) on certain targets and delivers a payload for remote code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: LANDesk Management Suite 8.7
No auth needed
Prerequisites: Network access to UDP port 65535 on the target · Target system running LANDesk Management Suite 8.7
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Aaron Portnoy · rubyremotewindows
https://www.exploit-db.com/exploits/29853

This Metasploit module exploits a stack-based buffer overflow in LANDesk Management Suite 8.7's Alert Service via UDP port 65535. It includes techniques to bypass NX (DEP) on certain targets and delivers a payload for remote code execution with SYSTEM privileges.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: LANDesk Management Suite 8.7
No auth needed
Prerequisites: Network access to UDP port 65535 on the target · Vulnerable version of LANDesk Management Suite
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/landesk_aolnsrvr.rb

This Metasploit module exploits a stack buffer overflow in LANDesk Management Suite 8.7's Alert Service via UDP port 65535. It includes payload handling for both NX-enabled and non-NX targets, demonstrating reliable remote code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: LANDesk Management Suite 8.7
No auth needed
Prerequisites: Network access to UDP port 65535 on the target system
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (9)

Core 9
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24892
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/34964
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/465643/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/23483
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/1391
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/33657
Vendor Advisory vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1017912

Scores

EPSS 0.7286
EPSS Percentile 99.4%

Details

Status published
Products (1)
landesk/landesk_management_suite 8.7
Published Apr 18, 2007
Tracked Since Feb 18, 2026