mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
715 B
715 B
CVE-2016-10243
Description
TeX Live allows remote attackers to execute arbitrary commands by leveraging inclusion of mpost in shell_escape_commands in the texmf.cnf config file.
POC
Reference
- https://scumjr.github.io/2016/11/28/pwning-coworkers-thanks-to-latex/
- https://scumjr.github.io/2016/11/28/pwning-coworkers-thanks-to-latex/
Github
No PoCs found on GitHub currently.