
using `/help`

Neat! Let's try

The bot has other commands. For example, `/credits`

Alarm bells starting going off in my head immediately upon reading `ImageMagick`
`ImageMagick` is an open-source image processing software suite that, well, has had some issues in the past. There are quite a few exploits we can look at, but the main one that we're interested in for this case is
`CVE-2016-3717`

By passing in `@/opt/flag.txt` we're able to read the contents of the flag file. This works for any file that you know the location of and have permissions to view

---
Back to [[_WebSite Publish/CTF/CTF Index|CTF Index]]
Tags: #ctf #imagmagick #CVE-2016-3717
Related: