Microsoft WINS Arbitrary Association delete exploit v1.35 Vulnerability exploited: CAN-2004-1080 - BID-11763/ Category: Exploits/Remote Exploits a buffer overflow vulnerability in Microsoft's WINS server Exploits an a condition where a remote user can arbitrary control the pointer to the association contained in a "Association Delete Message". This condition is abused to corrupt a function pointer in the application and install an agent. At the same time, another option of the protocol is used to populate the heap with executable code and increase the success possibilities. Supported Systems: Windows NT4 Server - sp6a (i386) Windows NT4 Enterprise Server - sp6a (i386) Windows 2000 Server - sp0 (i386) Windows 2000 Server - sp1 (i386) Windows 2000 Server - sp2 (i386) Windows 2000 Server - sp3 (i386) Windows 2000 Server - sp4 (i386) Windows 2000 Advanced Server - sp4 (i386) Windows 2003 Enterprise Edition - sp0 (i386) Windows 2003 Standard Edition - sp0 (i386) This module is included in the latest version of CORE IMPACT, the first automated comprehensive penetration testing product for accurately identifying information security risks. Click here to learn more about the product.