CVE-2007-2434

Aventail Connect 4.1.2.13 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-2434. PoCs published by Thomas Pollet.

AI-analyzed exploit summary The exploit triggers a buffer overflow in Aventail Connect by sending an overly long argument to the SSH command. The Perl one-liner generates a 2200-character string of 'a's, which exceeds the buffer size, potentially leading to arbitrary code execution or a denial of service.

Description

Buffer overflow in asnsp.dll in Aventail Connect 4.1.2.13 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a malformed DNS query.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Thomas Pollet · textdoswindows
https://www.exploit-db.com/exploits/29937

The exploit triggers a buffer overflow in Aventail Connect by sending an overly long argument to the SSH command. The Perl one-liner generates a 2200-character string of 'a's, which exceeds the buffer size, potentially leading to arbitrary code execution or a denial of service.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Aventail Connect 4.1.2.13
No auth needed
Prerequisites: Aventail Connect installed and running on the target system
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/1793
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/23717
Mailing List mailing-list x_refsource_fulldisc
http://marc.info/?l=full-disclosure&m=117795069208458&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/33972

Scores

EPSS 0.1442
EPSS Percentile 96.2%

Details

Status published
Products (1)
aventail/aventail_connect < 4.1.2.13
Published May 02, 2007
Tracked Since Feb 18, 2026