CVE-2021-22204 PoC — exiftool 代码注入漏洞

Source

https://github.com/convisolabs/CVE-2021-22204-exiftool

Associated Vulnerability

Title:exiftool 代码注入漏洞 (CVE-2021-22204)
Description:Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image

Description

Python exploit for the CVE-2021-22204 vulnerability in Exiftool

Readme

# CVE-2021-22204-exiftool
Python exploit for the CVE-2021-22204 vulnerability in Exiftool.

## About the vulnerability
The CVE-2021-22204 was discovered and reported by William Bowling. (@wcbowling)

This exploit was made by studying the exiftool patch after the CVE was already reported.

## Pre-requisites
Installed exiftool and djvulibre tools. If you are on Debian or ubuntu you can install with: 
```
sudo apt install djvulibre-bin exiftool
```

## How to run:
Change the IP and Port in the exploit.py file. You can test the reverse shell with 
```
nc -nvlp 9090  # or the port you specify in the exploit.py file
```
Then:
```
python3 exploit.py
```

And the image.jpg will trigger the vulnerability when opened with a vulnerable exiftool. 

If you want to practice, there is a small [lab here.](https://github.com/convisoappsec/CVE-2021-22204-exiftool/tree/master/lab)

File Snapshot


 [4.0K]  /data/pocs/9157814f90b9c152899fbea2fcda1a5b48d1fbc0
├── [ 468]  configfile
├── [ 786]  exploit.py
├── [ 46K]  image.jpg
├── [4.0K]  lab
│   ├── [1.6K]  application.pl
│   ├── [ 491]  Dockerfile
│   └── [ 592]  README.md
└── [ 875]  README.md

1 directory, 7 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!