CVE-2019-5429
CVE-2019-5429
Untrusted search path in FileZilla before 3.41.0-rc1 allows an attacker to gain privileges via a malicious 'fzsftp' binary in the user's home directory.
Affected products
FileZilla · FileZillaWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://lists.debian.org/debian-lts-announce/2022/05/msg00037.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/R7WUJWTJA55ILACKLTJFSQUYEBHVYENL/https://security.gentoo.org/glsa/202007-51https://svn.filezilla-project.org/filezilla?view=revision&revision=9112https://www.tenable.com/security/research/tra-2019-14