ermig1979 AntiDupl Link Following Vulnerability in Duplicate Image Deletion Handler
Vulnerability
A link following vulnerability has been identified in ermig1979 AntiDupl versions through 2.3.12. The issue resides in the Delete Duplicate Image Handler component, specifically within an unknown function of the AntiDupl.NET.WinForms.exe file. This vulnerability allows for manipulation that leads to unauthorized link following. Exploitation requires local access.
Impact
Exploitation of this vulnerability allows for link following, which can be used to access unintended resources or files.
Reproduction
To reproduce this vulnerability, install AntiDupl version 2.3.12. After installation, copy a file named 'trick.png' containing any data to 'C:\Windows\Temp' and 'C:\Windows\Temp\test1'. Open the application and add 'C:\Windows\Temp' to the open paths. Start a search and delete the first pictures in the selected results, ensuring that the 'trick.png' file in 'test1' is included. Replace the default deletion handler with a modified version that exploits the vulnerability by deleting an arbitrary file, such as 'C:\Config.msi'. After running the exploit, a command prompt with system privileges will appear.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.