ExifTool DjVu ANT Perl Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ExifTool DjVu ANT Perl injection', 'Description' = %q This module exploits a Perl injection vulnerability in the DjVu ANT parsing code of ExifToo...

ExifTool DjVu ANT Perl Injection Exploit

This Metasploit module exploits a Perl injection vulnerability in the DjVu ANT parsing code of ExifTool versions 7.44 through 12.23 inclusive. The injection is used to execute a shell command using Perl backticks. The DjVu image can be embedded in a wrapper image using the HasselbladExif EXIF...

openSUSE: Security Advisory for perl-Image-ExifTool (openSUSE-SU-2021:0707-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Exploit for Code Injection in Exiftool_Project Exiftool

CVE-2021-22204-exiftool Python exploit for the CVE-2021-22204...

Exploit for Code Injection in Exiftool_Project Exiftool

CVE-2021-22204-exiftool Python exploit for the CVE-2021-22204...

OPENSUSE-SU-2021:0707-1 Security update for perl-Image-ExifTool

This update for perl-Image-ExifTool fixes the following issues: Update to version 12.25 fixes boo1185547 CVE-2021-22204 JPEG XL support is now official Added read support for Medical Research Council MRC image files Added ability to write a number of 3gp tags in video files Added a new Sony...

Security update for perl-Image-ExifTool (important)

openSUSE Security Update: Security update for perl-Image-ExifTool Announcement ID: openSUSE-SU-2021:0707-1 Rating: important References: 1185547 Cross-References: CVE-2021-22204 CVSS scores: CVE-2021-22204 NVD : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15....

[SECURITY] Fedora 34 Update: perl-Image-ExifTool-12.16-3.fc34

ExifTool is a Perl module with an included command-line application for reading and writing meta information in image, audio, and video files. It reads EXIF, GPS, IPTC, XMP, JFIF, MakerNotes, GeoTIFF, ICC Profile, Photoshop IRB, FlashPix, AFCP, and ID3 meta information from JPG, JP2, TIFF, GIF,...

[SECURITY] Fedora 33 Update: perl-Image-ExifTool-12.16-3.fc33

ExifTool is a Perl module with an included command-line application for reading and writing meta information in image, audio, and video files. It reads EXIF, GPS, IPTC, XMP, JFIF, MakerNotes, GeoTIFF, ICC Profile, Photoshop IRB, FlashPix, AFCP, and ID3 meta information from JPG, JP2, TIFF, GIF,...

Fedora: Security Advisory for perl-Image-ExifTool (FEDORA-2021-88d24aa32b)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for perl-Image-ExifTool (FEDORA-2021-e3d8833d36)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for perl-Image-ExifTool (FEDORA-2021-de850ed71e)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Arbitrary Code Execution

Overview Impact Arbitrary code execution can occur when running exiftool against files with hostile metadata payloads. Patches ExifTool has already been patched in version 12.24. exiftool-vendored, which vendors ExifTool, includes this patch in v14.3.0. Workarounds No. Recommendation Upgrade to...

active-window-listener (>=1.1.0 <=1.1.1), node-red-contrib-writeexif (>=0.0.1 <=1.0.1) +3 more potentially affected by unknown CVE via exiftool-vendored (>=11.5.0 <=14.0.0)

exiftool-vendored NPM version =11.5.0, =1.1.0, =0.0.1, =1.4.2, =2.0.0, =0.4.0, =2.0.1 Source cves: unknown CVE Source advisory: OSV:GHSA-4WHQ-R978-2X68...

Arbitrary code execution in ExifTool

Impact Arbitrary code execution can occur when running exiftool against files with hostile metadata payloads. Patches ExifTool has already been patched in version 12.24. exiftool-vendored, which vendors ExifTool, includes this patch in v14.3.0. Workarounds No. References...

GHSA-4WHQ-R978-2X68 Arbitrary code execution in ExifTool

Impact Arbitrary code execution can occur when running exiftool against files with hostile metadata payloads. Patches ExifTool has already been patched in version 12.24. exiftool-vendored, which vendors ExifTool, includes this patch in v14.3.0. Workarounds No. References...

Arbitrary Code Execution

Overview Affected versions of this package are vulnerable to Arbitrary Code Execution via the DjVu file format. Improper neutralization of user data allows arbitrary code execution when parsing a malicious image. Remediation Upgrade exiftoolvendored to version 12.25.0 or higher. References - GitH...

Debian: Security Advisory (DSA-4910-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-4910-1 : libimage-exiftool-perl - security update

A vulnerability was discovered in libimage-exiftool-perl, a library and program to read and write meta information in multimedia files, which may result in execution of arbitrary code if a malformed DjVu file is processed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text...

[SECURITY] [DSA 4910-1] libimage-exiftool-perl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4910-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 02, 2021 https://www.debian.org/security/faq -...