WinVNC Client exploit v1.33 Vulnerability exploited: CAN-2001-0167 - BID-2305 Category: Exploits/Client Side Exploits a vulnerability in WinVNC client. The ATT Windows VNC client ships with a remotely exploitable buffer overflow. By providing a specially crafted response a malicious server has the ability to obtain access to the client machine and execute arbitrary commands as the user running the client software. Supported Systems: Windows 2000 Professional - sp4 (i386) Windows VNC Client 3.3.3 Windows VNC Client 3.3.3r1 Windows VNC Client 3.3.3r2 Windows VNC Client 3.3.3r6 Windows VNC Client 3.3.3r7 Windows VNC Client 3.3.3r8 Windows VNC Client 3.3.3r9 This module is included in the latest version of CORE IMPACT, the first automated comprehensive penetration testing product for accurately identifying information security risks. Click here to learn more about the product.