IE webbrowser_control exploit v1.32 Vulnerability exploited: CAN-2003-1328 - BID-6780/ Category: Exploits/Client Side This module exploits a vulnerability in Microsoft's Internet Explorer 6.0 to upload and execute a level0 agent in client systems. The module starts a HTTP server in the source agent, when the victim system tries to retrieve any file, it sends a malicious HTML page that installs a level 0 agent in the victim's machine, bypassing sandbox restrictions.Taking into account the nature of this exploit, exploitation reliability depends on the browser configuration (scripting has to be enabled, by default is enabled) and other factors such as system load.This exploit needs to open some windows in the target client system, so the exploitation attempt may be noticed by a trained user.If a level 0 agent is installed, it will remain persistent and must be removed manually. Supported Systems: Windows 2000 Professional - sp1 (i386) Windows 2000 Professional - sp2 (i386) Windows 2000 Professional - sp3 (i386) Windows XP Professional - sp0 (i386) Windows XP Home Edition - sp0 (i386) Microsoft Internet Explorer 6.0 in Windows 2000 (SP1 to SP3) Windows XP Professional - sp0 (i386) - Internet Explorer 6.0.2600.0000 This module is included in the latest version of CORE IMPACT, the first automated comprehensive penetration testing product for accurately identifying information security risks. Click here to learn more about the product.