Hacktool.THCIISLame

Hacktool.THCIISLame is a hack tool that takes advantage of the SSL PCT Windows vulnerability, as described in Microsoft Security Bulletin MS04-011. It provides an attacker a system shell on a specified remote computer.

The vulnerability affects unpatched versions of Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003. It is considered Critical for NT/2000, Important for XP, and Low for 2003.




The discovery of the SSL PCT vulnerability is credited to Internet Security Systems.

Protection

• Initial Rapid Release version April 26, 2004
• Latest Rapid Release version December 30, 2008 revision 035
• Initial Daily Certified version April 26, 2004
• Latest Daily Certified version December 30, 2008 revision 040
• Initial Weekly Certified release date April 26, 2004

Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

• Wild Level: Low
• Number of Infections: 0 - 49
• Number of Sites: 0 - 2
• Geographical Distribution: Low
• Threat Containment: Easy
• Removal: Easy

Damage

• Damage Level: Low

Distribution

• Distribution Level: Low