一、 漏洞 CVE-2021-22204 基础信息

                                        # N/A

## 概述
ExifTool版本7.44及更高版本中DjVu文件格式的用户数据未充分中和，导致解析恶意图像时可能执行任意代码。

## 影响版本
- ExifTool 7.44及以上版本

## 细节
在ExifTool处理DjVu文件格式时，用户输入的数据没有被充分中和。这种漏洞使攻击者可以通过构造恶意DjVu图像文件来执行任意代码。

## 影响
攻击者可以利用此漏洞在受害者系统上执行恶意代码，从而导致潜在的安全威胁，包括系统控制权的丧失和敏感信息的泄露。
                                        

二、漏洞 CVE-2021-22204 的公开POC

三、漏洞 CVE-2021-22204 的情报信息

• http://packetstormsecurity.com/files/164994/GitLab-13.10.2-Remote-Code-Execution.htmlx_refsource_MISC
• http://packetstormsecurity.com/files/167038/ExifTool-12.23-Arbitrary-Code-Execution.htmlx_refsource_MISC
• https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22204.jsonx_refsource_CONFIRM
• https://hackerone.com/reports/1154542x_refsource_MISC

• 标题： Packet Storm -- 🔗来源链接

  标签：x_refsource_MISC

  神龙速读：

                                          ## 关键漏洞信息
  
  - **Prohibited Activities**: You may not access or use the Site for any purpose other than that for which we make the Site available.  
    - This section prohibits actions that could potentially exploit vulnerabilities (e.g., acting maliciously against the site).
  
  - **User Generated Contributions**: The Site may invite you to chat, contribute to, or participate in blogs, message boards, online forums, and other functionality, and may provide you with the opportunity to create, submit, post, display, transmit, perform, publish, distribute, or broadcast content and materials to us or on the Site. Contributions may be viewable by other users of the Site and through third-party websites.
    - While this section does not directly relate to a vulnerability, it may be indirectly relevant in the event of a dispute or legal action stemming from a vulnerability.
  
  - **API Access**: Access to our API is provided under the following conditions:
    - If not properly secured or monitored, the API could be a potential vector for certain types of attacks (e.g., data exfiltration).
  
  - **Website Purpose**: The Site is intended for users who are at least 18 years old. Persons under the age of 18 are not permitted to use or register for the Site.
    - This is a vulnerability in the sense that it could be exploited by attackers posing as users under 18 to gain access.
                                          

  
• http://packetstormsecurity.com/files/164768/GitLab-Unauthenticated-Remote-ExifTool-Command-Injection.htmlx_refsource_MISC
• https://github.com/exiftool/exiftool/commit/cf0f4e7dcd024ca99615bfd1102a841a25dde031#diff-fa0d652d10dbcd246e6b1df16c1e992931d3bb717a7e36157596b76bdadb3800x_refsource_MISC

• 标题： [SECURITY] [DSA 4910-1] libimage-exiftool-perl security update -- 🔗来源链接

  标签：vendor-advisoryx_refsource_DEBIAN

  神龙速读：

                                          ### 关键信息
  
  - **CVE ID**: CVE-2021-22204
  - **Debian Bug**: 987505
  - **Vulnerability**: A vulnerability was discovered in libimage-exiftool-perl, which may result in the execution of arbitrary code if a malformed DjVu file is processed.
  - **Affected Package**: libimage-exiftool-perl
  - **Fixed in Version**: 11.16-1+deb10u1 (for stable distribution buster)
                                          

  
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U4RF6PJCJ6NQOVJJJF6HN6BORUQVIXY6/vendor-advisoryx_refsource_FEDORA
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F6UOBPU3LSHAPRRJNISNVXZ5DSUIALLV/vendor-advisoryx_refsource_FEDORA
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDKDLJLBTBBR66OOPXSXCG2PQRM5KCZL/vendor-advisoryx_refsource_FEDORA

• 标题： [SECURITY] [DLA 2663-1] libimage-exiftool-perl security update -- 🔗来源链接

  标签：mailing-listx_refsource_MLIST

  神龙速读：

                                          ```
  - **Vulnerability**:
    - **Package**: libimage-exiftool-perl
    - **Version**: 10.40-1+deb9u1
    - **CVE ID**: CVE-2021-22204
    - **Description**: A vulnerability was discovered in libimage-exiftool-perl, a library and program to read and write meta information in multimedia files, which may result in execution of arbitrary code if a malformed DjVu file is processed.
  
  - **Affected Version**: 10.40-1+deb9u1
  
  - **Resolution**:
    - **Fixed in Debian 9 Stretch**: 10.40-1+deb9u1
  
  - **Security Tracker Page**: https://security-tracker.debian.org/tracker/libimage-exiftool-perl
  ```
                                          

  
• http://www.openwall.com/lists/oss-security/2021/05/09/1mailing-listx_refsource_MLIST
• http://www.openwall.com/lists/oss-security/2021/05/10/5mailing-listx_refsource_MLIST
• https://nvd.nist.gov/vuln/detail/CVE-2021-22204

四、漏洞 CVE-2021-22204 的评论