5 matches found
CVE-2013-1744
Technical details are not publicly provided in the supplied documents; monitor for updates. Current descriptions indicate a remote command execution vulnerability in IRIS citations management tool up to version 1.3, with no further specifics in the connected sources.
IRIS Citations Management Tool (post auth) Remote Command Execution
No description provided by source. Here is a bug that I finally found time to write about :- https://infosecabsurdity.wordpress.com/2013/02/09/iris-citations-management-tool-post-auth-remote-command-execution/ The attached contains my mini framework, exploit and screenshot. Cheers! aeon I Read It...
I Read It Somewhere (IRIS) citations management tool <= v1.3 (post auth) Remote Command Execution
A vulnerability exists in IRIS citations management tool which allows a low privileged attacker to execute arbitrary commands. Details can be found on my blog: https://infosecabsurdity.wordpress.com/2013/02/09/iris-citations-management-tool-post-auth-remote-command-execution/ PoC:...
IRIS Citations Management Tool Command Execution
A vulnerability exists in IRIS citations management tool which allows a low privileged attacker to execute arbitrary commands. Details can be found on my blog: https://infosecabsurdity.wordpress.com/2013/02/09/iris-citations-management-tool-post-auth-remote-command-execution/ PoC:...
IRIS Citations Management Tool - (Authenticated) Remote Command Execution
IRIS Citations Management Tool - Authenticated Remote Command Execution Here is a bug that I finally found time to write about :- https://infosecabsurdity.wordpress.com/2013/02/09/iris-citations-management-tool-post-auth-remote-command-execution/ The attached contains my mini framework, exploit a...