SSL PCT Handshake Overflow exploit v1.6 Vulnerability exploited: CAN-2003-0719 - BID-10116 Category: Exploits/Remote This module exploits a buffer overflow and installs a level0 agent into the target host. A buffer overflow vulnerability exists in the Private Communications Transport (PCT) protocol. Systems running any Microsoft SSL capable service are vulnerable. Supported Systems: Windows 2000 Professional - sp4 (i386) Windows 2000 Professional - sp3 (i386) Windows 2000 Professional - sp2 (i386) Windows 2000 Server - sp4 (i386) Windows 2000 Server - sp3 (i386) Windows 2000 Server - sp2 (i386) Windows 2000 Advanced Server - sp4 (i386) Windows 2000 Advanced Server - sp3 (i386) Windows 2000 Advanced Server - sp2 (i386) Windows XP Professional - sp0 (i386) Windows XP Professional - sp1 (i386) Windows XP Home Edition - sp0 (i386) Windows XP Home Edition - sp1 (i386) IIS 5.0 IIS 5.1 Exchange 5.0 SMTP (port 25 after STARTTLS command) IMAP (port 993) POP3 (port 995) NNTP (port 563) This module is included in the latest version of CORE IMPACT, the first automated comprehensive penetration testing product for accurately identifying information security risks. Click here to learn more about the product.