CVE-2018-20211

HIGH

ExifTool <8.32 - Privilege Escalation

Title source: llm

Description

ExifTool 8.32 allows local users to gain privileges by creating a %TEMP%\par-%username%\cache-exiftool-8.32 folder with a victim's username, and then copying a Trojan horse ws32_32.dll file into this new folder, aka DLL Hijacking. NOTE: 8.32 is an obsolete version from 2010 (9.x was released starting in 2012, and 10.x was released starting in 2015).

References (2)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/150892/Exiftool-8.3.2.0-DLL-Hijacking.html

[Exploit, Mailing List, Third Party Advisory] http://seclists.org/fulldisclosure/2018/Dec/44

Scores

CVSS v3 7.8

EPSS 0.0020

EPSS Percentile 42.2%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Classification

CWE

CWE-427

Status published

Affected Products (1)

exiftool_project/exiftool

Timeline

Published Jan 02, 2019

Tracked Since Feb 18, 2026