https://www.reddit.com/r/hacking/comments/n0k9r4/arbitrary_code_execution_found_in_exiftool_make/ Press J to jump to the feed. Press question mark to learn the rest of the keyboard shortcuts [ ] Log InSign Up User account menu 907 Arbitrary code execution found in ExifTool. Make sure to update to 12.24+ [renderTimi] Close 907 Posted by4 days ago WholesomeSilver2Hugz Arbitrary code execution found in ExifTool. Make sure to update to 12.24+ [renderTimi] Play 0:00 0:00 Settings Fullscreen 30 comments share save hide report 99% Upvoted Log in or sign up to leave a commentLog InSign Up Sort by best View discussions in 1 other community [renderTimi] level 1 4 days ago ACEs are always pretty cool to watch, but terrifying to deal with 72 Reply Share ReportSave level 2 3 days ago The exception here being, older console games 23 Reply Share ReportSave Continue this thread level 1 4 days ago I like calculators 31 Reply Share ReportSave level 1 Original Poster4 days ago Source: https://twitter.com/wcbowling/status/1385803927321415687 23 Reply Share ReportSave level 1 3 days ago can someone explain to me how the malicious code is added to the tools? is it because the code was embedded to the image? 9 Reply Share ReportSave level 2 3 days ago Yes. I don't know in which step of the process the code is injected, but the payload is in the image. 12 Reply Share ReportSave Continue this thread level 2 3 days ago I'm assuming it's malformed exif data and when the tool parses it the magic happens 9 Reply Share ReportSave Continue this thread level 1 3 days ago What's scary to me is this means some components were compiled without ASLR and presumably without stack cookies. In 2021. 15 Reply Share ReportSave level 2 3 days ago exiftool is written in perl, the patch is obfuscated but I think this is a command injection bug. 8 Reply Share ReportSave Continue this thread level 2 3 days ago It's command injection I believe, mitigations like those don't apply. ^Also ASLR is a runtime mitigation set by the user, not compile time 4 Reply Share ReportSave Continue this thread level 2 RussiaVodkaAK47 -17 points * 3 days agoMore than 1 child Continue this thread level 1 4 days ago That's fucking good! 2 Reply Share ReportSave level 1 3 days ago u/savevideo 2 Reply Share ReportSave level 2 3 days ago View link --------------------------------------------------------------------- Info | Feedback | Donate | DMCA 1 Reply Share ReportSave level 1 3 days ago What am I supposed to see here? 1 Reply Share ReportSave level 2 3 days ago exiftool is a tool to read exif data in a picture. It can't normally launch something. Here, by analysing a pictures some exploit launch the Calc. So basically it's a Poc of ACE, change the code who launch the Calc by something malicious and you're done 4 Reply Share ReportSave Continue this thread level 1 4 days ago Thats lovely 1 Reply Share ReportSave level 1 2 hours ago There are many online websites that will display the EXIF data for an image. I wonder how many use this tool. Someone just needs to create an image that sends a ping to their server to start counting victim websites. 1 Reply Share ReportSave View Entire Discussion (30 Comments) More posts from the hacking community Continue browsing in r/hacking Subreddit Icon r/hacking A subreddit dedicated to hacking and hackers. Constructive collaboration and learning about exploits, industry standards, grey and white hat hacking, new hardware and software hacking technology, sharing ideas and suggestions for small business and personal security. 1.8m Members 953 Online --------------------------------------------------------------------- Created Apr 26, 2008 Join helpReddit AppReddit coinsReddit premiumReddit gifts aboutcareerspressadvertiseblogTermsContent policyPrivacy policyMod policy Reddit Inc (c) 2021. All rights reserved Back to Top