Vulnerabilities > CVE-2005-3589 - Unspecified vulnerability in Filezilla Server Terminal 0.9.4D

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
filezilla
exploit available
metasploit
NVD
Published: 2005-11-16
Updated: 2024-11-21

Summary

Buffer overflow in FileZilla Server Terminal 0.9.4d may allow remote attackers to cause a denial of service (terminal crash) via a long USER ftp command.

Vulnerable Configurations

Part Description Count
Application
Filezilla
1

Exploit-Db

descriptionFileZilla Server Terminal 0.9.4d Buffer Overflow PoC. CVE-2005-3589. Dos exploit for windows platform
idEDB-ID:1336
last seen2016-01-31
modified2005-11-21
published2005-11-21
reporterInge Henriksen
sourcehttps://www.exploit-db.com/download/1336/
titleFileZilla Server Terminal 0.9.4d - Buffer Overflow PoC

Metasploit

descriptionThis module triggers a Denial of Service condition in the FileZilla FTP Server Administration Interface in versions 0.9.4d and earlier. By sending a procession of excessively long USER commands to the FTP Server, the Administration Interface (FileZilla Server Interface.exe) when running, will overwrite the stack with our string and generate an exception. The FileZilla FTP Server itself will continue functioning.
idMSF:AUXILIARY/DOS/WINDOWS/FTP/FILEZILLA_ADMIN_USER
last seen2020-01-14
modified2017-11-08
published2009-01-11
referenceshttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3589
reporterRapid7
sourcehttps://github.com/rapid7/metasploit-framework/blob/master//modules/auxiliary/dos/windows/ftp/filezilla_admin_user.rb
titleFileZilla FTP Server Admin Interface Denial of Service

References