CVE-2016-15003: FileZilla Client Installer uninstall.exe unquoted search path
First published: Mon Jul 18 2022(Updated: )
A vulnerability has been found in FileZilla Client 3.17.0.0 and classified as problematic. This vulnerability affects unknown code of the file C:\Program Files\FileZilla FTP Client\uninstall.exe of the component Installer. The manipulation leads to unquoted search path. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mozilla VPN | =3.17.0 | |
| Microsoft Windows Operating System |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2016-15003?
CVE-2016-15003 is classified as a problematic vulnerability affecting FileZilla Client 3.17.0.0.
How do I fix CVE-2016-15003?
To mitigate CVE-2016-15003, update FileZilla Client to a version that addresses this vulnerability.
What component is affected by CVE-2016-15003?
CVE-2016-15003 affects the uninstall.exe component of the FileZilla FTP Client.
How does the vulnerability in CVE-2016-15003 manifest?
The vulnerability in CVE-2016-15003 leads to an unquoted search path issue which can be exploited.
Which version of FileZilla Client is vulnerable to CVE-2016-15003?
CVE-2016-15003 specifically affects FileZilla Client version 3.17.0.0.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/severity
- agent/last-modified-date
- agent/author
- agent/title
- agent/references
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/filezilla-project
- canonical/mozilla vpn
- version/mozilla vpn/3.17.0
- vendor/microsoft
- canonical/microsoft windows operating system