Scalable Vector Graphics (SVG) Arbitrary Code Execution Vulnerability

Bugtraq ID:	53552
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	May 15 2012 12:00AM
Updated:	May 21 2012 07:30AM
Credit:	Christian Johansson and Liam Morland
Vulnerable:	SVG Scalable Vector Graphics (SVG) Tiny 1.2 SVG Scalable Vector Graphics (SVG) 1.2 Apache Software Foundation Batik SVG Toolkit 1.7
Not Vulnerable:

Scalable Vector Graphics (SVG) Arbitrary Code Execution Vulnerability

Scalable Vector Graphics (SVG) is prone to an arbitrary-code-execution vulnerability.

Attackers can exploit this issue to execute arbitrary code in the context of the application and perform unauthorized actions. Other attacks are also possible.

SVG 1.1 and SVG Tiny 1.2 specifications are vulnerable.

Scalable Vector Graphics (SVG) Arbitrary Code Execution Vulnerability

The following exploit is available:

• /data/vulnerabilities/exploits/53552.txt

Scalable Vector Graphics (SVG) Arbitrary Code Execution Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of any more recent information, please mail us at: [email protected].

Scalable Vector Graphics (SVG) Arbitrary Code Execution Vulnerability

References:

• Scalable Vector Graphics (SVG) Specifications (Scalable Vector Graphics (SVG))
  
• SVG files and Java code execution (Agarri)