Let’s see if we can exploit it first, following those instructions.
- Rename exe to gif
- Upload
- Get people to click on it and run it
I am on a Windows system so this won’t be much for people who aren’t…
-
Renamed
calc.exetocalc.gif. File size 912 KB (933,888 bytes) -
Upload it
-
Provide link to the file (I guess adding the .exe back on at the end… somehow?) https://meta.discourse.org//assets-meta-cdck-prod-meta.s3.dualstack.us-west-1.amazonaws.com/original/3X/7/f/7ffebfee4b3c05a0a8731e859bf20ebb0b98b5fa.gif
In theory this would work for vulnerable PDFs as well, but PDF is a valid upload type, and vulnerable PDF viewers are the problem there, like if the browser’s GIF handling had some kind of buffer overflow.
Ok so I
-
Download the file. Does seem about the right file size, 911 KB (933,632 bytes)
-
Rename it to .exe
-
Run it and get
Windows SmartScreen has prevented an unrecognized app from running. Running this app might put your PC at risk.
-
Ok so select file properties, Unblock
-
Run it and get
