CVE-2007-3314

Altap Salamander 2.5 PE Viewer Buffer Overflow

Title source: metasploit

Exploitation Summary

EIP tracks 2 public exploits for CVE-2007-3314. PoCs published by Metasploit, aushack, including Metasploit module exploits/windows/fileformat/altap_salamander_pdb.

AI-analyzed exploit summary This exploit targets a buffer overflow in Altap Salamander <= v2.5 via a malicious PDB file. It overwrites the SEH to achieve remote code execution when the file is viewed in the Portable Executable Viewer plugin.

Description

Stack-based buffer overflow in peviewer.spl in Altap Servant Salamander 2.5 with Portable Executable Viewer 2.02 (English Trial), and 2.0 with Portable Executable Viewer 1.00 (English Trial), allows remote attackers to execute arbitrary code via a long PDB debug filename in a PE file.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubylocalwindows

https://www.exploit-db.com/exploits/16656

View Code ZIP pw:eip

This exploit targets a buffer overflow in Altap Salamander <= v2.5 via a malicious PDB file. It overwrites the SEH to achieve remote code execution when the file is viewed in the Portable Executable Viewer plugin.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Altap Salamander <= 2.5

No auth needed

Prerequisites: User interaction to open the malicious PDB file in Altap Salamander

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC GOOD

by aushack · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/altap_salamander_pdb.rb