cbcvebase.
CVE-2005-3589
published 2005-11-16

CVE-2005-3589: Buffer overflow in FileZilla Server Terminal 0.9.4d may allow remote attackers to cause a denial of service (terminal crash) via a long USER ftp command.

PriorityP344high7.8CVSS 2.0
AVNACLAuNCNINAC
EXPLOIT
EPSS
52.86%
98.8th percentile
Buffer overflow in FileZilla Server Terminal 0.9.4d may allow remote attackers to cause a denial of service (terminal crash) via a long USER ftp command.

Affected

1 ranges
VendorProductVersion rangeFixed in
filezillafilezilla_server_terminal

Detection & IOCsextracted from sources · hover to see the quote

commandUSER <long string>\n
filenameFileZilla Server Interface.exe
  • Detect repeated oversized FTP USER commands (>5000 bytes) sent to port 21 targeting FileZilla Server 0.9.4d; the exploit iterates progressively longer USER payloads filled with 'A' characters terminated by a newline.
  • The DoS condition manifests only in the Administration Interface process (FileZilla Server Interface.exe), not the FTP server process itself — monitor for crashes/exceptions in that specific process while the FTP service remains up.
  • Stack overwrite via excessively long USER command triggers an exception in the admin interface; monitor for stack-based buffer overflow exceptions in FileZilla Server Interface.exe correlated with large FTP USER command payloads.
  • ·Vulnerability affects FileZilla Server Terminal version 0.9.4d and earlier only; versions beyond this are not confirmed affected.
  • ·The crash impacts only the Administration Interface (terminal/GUI), not the FTP server daemon itself, meaning FTP service availability is not interrupted — detection based solely on FTP service downtime will miss this DoS.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.