Andres Tarasco Acuña

9 exploits Active since Sep 2006
CVE-2006-5854 EXPLOITDB c WORKING POC
Novell Netware Client 4.91-4.91 SP2 - Remote Code Execution via Spooler Service Buffer Overflow
Multiple buffer overflows in the Spooler service (nwspool.dll) in Novell Netware Client 4.91 through 4.91 SP2 allow remote attackers to execute arbitrary code via a long argument to the (1) EnumPrinters and (2) OpenPrinter functions.
EIP-2026-119217 EXPLOITDB c WORKING POC
TIBCO Rendezvous 7.4.11 - add router Remote Buffer Overflow
CVE-2007-0641 EXPLOITDB c WORKING POC
Shaffer Solutions Corp dapcnfsd.dll 0.6.4.0 - Buffer Overflow in EnumPrintersA Function
Buffer overflow in the EnumPrintersA function in dapcnfsd.dll 0.6.4.0 in Shaffer Solutions (SSC) DiskAccess NFS Client allows remote attackers to execute arbitrary code via a long argument, an issue similar to CVE-2006-5854 and CVE-2007-0444.
CVE-2007-1644 EXPLOITDB c WORKING POC
Microsoft Windows DNS Server - Unauthenticated DNS Record Manipulation via Dynamic Update Mechanism
The dynamic DNS update mechanism in the DNS Server service on Microsoft Windows does not properly authenticate clients in certain deployments or configurations, which allows remote attackers to change DNS records for a web proxy server and conduct man-in-the-middle (MITM) attacks on web traffic, conduct pharming attacks by poisoning DNS records, and cause a denial of service (erroneous name resolution).
CVE-2008-4037 EXPLOITDB text WORKING POC
Microsoft Windows - Remote Code Execution via SMB Credential Reflection
Microsoft Windows 2000 Gold through SP4, XP Gold through SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote SMB servers to execute arbitrary code on a client machine by replaying the NTLM credentials of a client user, as demonstrated by backrush, aka "SMB Credential Reflection Vulnerability." NOTE: some reliable sources report that this vulnerability exists because of an insufficient fix for CVE-2000-0834.
CVE-2006-4676 EXPLOITDB c WORKING POC
TIBCO RendezVous <7.4.11 - Info Disclosure
TIBCO RendezVous 7.4.11 and earlier logs base64-encoded usernames and passwords in rvrd.db, which allows local users to obtain sensitive information by decoding the log file.
EIP-2026-117517 EXPLOITDB c WORKING POC
Microsoft Windows - ACLs Privilege Escalation (2)
CVE-2006-5854 EXPLOITDB c WORKING POC
Novell Netware Client 4.91-4.91 SP2 - Remote Code Execution via Spooler Service Buffer Overflow
Multiple buffer overflows in the Spooler service (nwspool.dll) in Novell Netware Client 4.91 through 4.91 SP2 allow remote attackers to execute arbitrary code via a long argument to the (1) EnumPrinters and (2) OpenPrinter functions.
CVE-2007-0444 EXPLOITDB c WORKING POC
Citrix MetaFrame - Stack-based Buffer Overflow in Print Provider Library via Long Arguments
Stack-based buffer overflow in the print provider library (cpprov.dll) in Citrix Presentation Server 4.0, MetaFrame Presentation Server 3.0, and MetaFrame XP 1.0 allows local users and remote attackers to execute arbitrary code via long arguments to the (1) EnumPrintersW and (2) OpenPrinter functions.