vendor:
Filezilla FTP Client
by:
Bilal Qureshi
7.5
CVSS
HIGH
DLL Hijacking
427
CWE
Product Name: Filezilla FTP Client
Affected Version From: 3.63.1
Affected Version To: 3.63.1
Patch Exists: NO
Related CWE:
CPE: a:filezilla:filezilla_ftp_client
Platforms Tested: Windows 10 Pro 64-bit (10.0, Build 19044)
2023
FileZilla Client 3.63.1 – ‘TextShaping.dl’ DLL Hijacking
FileZilla is a free and open-source, cross-platform FTP application, consisting of FileZilla Client and FileZilla Server. Clients are available for Windows, Linux, and macOS. Both server and client support FTP and FTPS, while the client can in addition connect to SFTP servers. DLL Library named TextShaping.dll is not present at the FileZilla folder, this file can be loaded with the app. Make malicious .dll file via msfvenom and place at the destination folder. Start listener via nc and execute FileZilla.exe.
Mitigation:
Ensure that the application is not vulnerable to DLL hijacking by verifying that all the DLLs used by the application are present in the application directory.
