‘JPEG Fuzzer’
Summary
”
Credit:
‘The information has been provided by Jeremy Brown.
To keep updated with the tool visit the project’s homepage at: http://www.packetstormsecurity.org/filedesc/jpegfuzr.tar-gz.html‘
Details
‘JPEGfuzr is a perl implementation of fuzzing JPEG metadata through the Image::MetaData::JPEGextension. It supports 40 metadata tags and fuzzes all, one by one, using the fuzz data supplied.
Tool source:
#!/usr/bin/perl
# Jeremy Brown [0xjbrown41@gmail.com/jbrownsec.blogspot.com]
# JPEGfuzr – JPEG File Format Fuzzer
#
# You need to have an image to fuzz with — use test.jpeg if you like 😉
# Fuzzing in 40 stages.. not bad at all. JPEG metadata tags are fun =)
#
# ~/docs is included for more information about this nice extension.
# For terminal logging: `man script`
# This fuzzer should, at this point, be decent. Take care of it.
use Image::MetaData::JPEG;
use Getopt::Std;
# FUZZ DATA BEGIN HERE
@overflows = (‘A’ x 2200, ‘A’ x 4200, ‘A’ x 8400, ‘A’ x 12000, ‘A’ x 20000, ‘A’ x 40000, ‘A’ x 50000, ‘A’ x 65340, ‘//AAAA’ x 8500, ‘\AAAA’ x 8500, ‘