Minidlna Command Injection Vulnerability

A command injection vulnerability has been identified in Minidlna versions through 1.3.3. This vulnerability allows attackers to execute arbitrary operating system commands by using a specially crafted 'minidlna.conf' configuration file. The issue arises in the 'rescan' functionality of the 'check_db' function within 'minidlna.c', where the 'db_dir' parameter can be manipulated to execute commands via the 'system' function.

Impact

Exploitation of this vulnerability allows for arbitrary command execution on the server where Minidlna is running.

Reproduction

To reproduce this vulnerability, use the example 'minidlna.conf' file available in this repository. Launch the Minidlna server with the '-d' option for debug mode and the '-f' option to specify the configuration file. This will trigger the command injection by executing the proof-of-concept command, which opens a file system window using 'xdg-open'.