ID CVE-2005-3589
Summary Buffer overflow in FileZilla Server Terminal 0.9.4d may allow remote attackers to cause a denial of service (terminal crash) via a long USER ftp command.
References
Vulnerable Configurations
  • cpe:2.3:a:filezilla:filezilla_server_terminal:0.9.4d
    cpe:2.3:a:filezilla:filezilla_server_terminal:0.9.4d
CVSS
Base: 7.8 (as of 18-11-2005 - 13:00)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
exploit-db via4
description FileZilla Server Terminal 0.9.4d Buffer Overflow PoC. CVE-2005-3589. Dos exploit for windows platform
id EDB-ID:1336
last seen 2016-01-31
modified 2005-11-21
published 2005-11-21
reporter Inge Henriksen
source https://www.exploit-db.com/download/1336/
title FileZilla Server Terminal 0.9.4d - Buffer Overflow PoC
metasploit via4
description This module triggers a Denial of Service condition in the FileZilla FTP Server Administration Interface in versions 0.9.4d and earlier. By sending a procession of excessively long USER commands to the FTP Server, the Administration Interface (FileZilla Server Interface.exe) when running, will overwrite the stack with our string and generate an exception. The FileZilla FTP Server itself will continue functioning.
id MSF:AUXILIARY/DOS/WINDOWS/FTP/FILEZILLA_ADMIN_USER
last seen 2019-03-22
modified 2017-11-08
published 2009-01-11
reliability Normal
reporter Rapid7
source https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/windows/ftp/filezilla_admin_user.rb
title FileZilla FTP Server Admin Interface Denial of Service
refmap via4
bid 15346
bugtraq
  • 20051107 Work in Progress: FileZilla Server Terminal V0.9.4d Buffer Overflow
  • 20051121 Re: Work in Progress: FileZilla Server Terminal V0.9.4d Buffer Overflow
misc
osvdb 20817
Last major update 17-10-2016 - 23:36
Published 16-11-2005 - 02:42
Last modified 19-10-2018 - 11:37
Back to Top