This Metasploit module exploits a stack-based buffer overflow in the Cain & Abel v4.9.24 and below. An attacker must send the file to victim, and the victim must open the specially crafted RDP file under Tools -> Remote Desktop Password Decoder.
47967a6fce5366f37b0a5c09173209b74b0a55645903ae023725ee62e0883c49