MDL Considered Harmful

less than 1 minute read

img

using /help

img

Neat! Let’s try

img

The bot has other commands. For example, /credits

img

Alarm bells starting going off in my head immediately upon reading ImageMagick

ImageMagick is an open-source image processing software suite that, well, has had some issues in the past. There are quite a few exploits we can look at, but the main one that we’re interested in for this case is

CVE-2016-3717

img

By passing in @/opt/flag.txt we’re able to read the contents of the flag file. This works for any file that you know the location of and have permissions to view

img