๐ ExifTool DjVu ANT Perl Injection
๐ก Newskategorie: IT Security Tools
๐ Quelle: packetstormsecurity.com
This Metasploit module exploits a Perl injection vulnerability in the DjVu ANT parsing code of ExifTool versions 7.44 through 12.23 inclusive. The injection is used to execute a shell command using Perl backticks. The DjVu image can be embedded in a wrapper image using the HasselbladExif EXIF field. ...