DIE infinite loop caused by extracting the exif metadata

horsicq / Detect-It-Easy

Program for determining types of files for Windows, Linux and MacOS.

http://ntinfo.biz

MIT License

6.95k stars 695 forks source link

Closed liyansong2018 closed 8 months ago

liyansong2018 commented 8 months ago

Latest version of the DIE has an infinite loop during the time of parsing malicious image . demo_exif.zip

horsicq commented 8 months ago

Thanks a lot for the bugreport!

liyansong2018 commented 8 months ago

It's my pleasure. The method for constructing a poc image is as follows

Snipaste_2023-11-03_19-43-19