CVE-2005-3589
published 2005-11-16CVE-2005-3589: Buffer overflow in FileZilla Server Terminal 0.9.4d may allow remote attackers to cause a denial of service (terminal crash) via a long USER ftp command.
PriorityP344high7.8CVSS 2.0
AVNACLAuNCNINAC
EXPLOIT
EPSS
52.86%
98.8th percentile
Buffer overflow in FileZilla Server Terminal 0.9.4d may allow remote attackers to cause a denial of service (terminal crash) via a long USER ftp command.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| filezilla | filezilla_server_terminal | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect repeated oversized FTP USER commands (>5000 bytes) sent to port 21 targeting FileZilla Server 0.9.4d; the exploit iterates progressively longer USER payloads filled with 'A' characters terminated by a newline. ↗
- →The DoS condition manifests only in the Administration Interface process (FileZilla Server Interface.exe), not the FTP server process itself — monitor for crashes/exceptions in that specific process while the FTP service remains up. ↗
- →Stack overwrite via excessively long USER command triggers an exception in the admin interface; monitor for stack-based buffer overflow exceptions in FileZilla Server Interface.exe correlated with large FTP USER command payloads. ↗
- ·Vulnerability affects FileZilla Server Terminal version 0.9.4d and earlier only; versions beyond this are not confirmed affected. ↗
- ·The crash impacts only the Administration Interface (terminal/GUI), not the FTP server daemon itself, meaning FTP service availability is not interrupted — detection based solely on FTP service downtime will miss this DoS. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
FileZilla Server Terminal 0.9.4d - Buffer Overflow (PoC)
exploitdb·2005-11-21
CVE-2005-3589 FileZilla Server Terminal 0.9.4d - Buffer Overflow (PoC)
FileZilla Server Terminal 0.9.4d - Buffer Overflow (PoC)
---
/*
FileZillaDoS.cpp
FileZilla Server Terminal 0.9.4d DoS PoC by Inge Henriksen.
Read the disclaimer at http://ingehenriksen.blogspot.com before using.
Made to work with Microsoft(R) Visual C++(R), to use link "WS2_32.lib".
*/
#include "stdafx.h"
#include
#include "Winsock2.h"
#define BUFFSIZE 10000
#define ATTACK_BUFFSIZE 5000
using namespace std;
int _tmain(int argc, _TCHAR* argv[])
{
cout " << endl;
cout << "Example: " << argv[0] << " 192.168.2.100 21" << endl;
return (-1);
}
in_addr IPAddressData;
__int64 counterVal;
char* bufferData;
char* attackStringData;
SOCKET sock;
sockaddr_in sinInterface;
WSADATA wsaData;
int iResult = WSAStartup(MAKEWORD(2, 2), &wsaData); // Use Winsock version 2.2
if (iResult != NO_ERROR)
{
c
Metasploit
FileZilla FTP Server Admin Interface Denial of Service
metasploit
FileZilla FTP Server Admin Interface Denial of Service
FileZilla FTP Server Admin Interface Denial of Service
This module triggers a Denial of Service condition in the FileZilla FTP Server Administration Interface in versions 0.9.4d and earlier. By sending a procession of excessively long USER commands to the FTP Server, the Administration Interface (FileZilla Server Interface.exe) when running, will overwrite the stack with our string and generate an exception. The FileZilla FTP Server itself will continue functioning.
No writeups or analysis indexed.
http://ingehenriksen.blogspot.com/2005/11/filezilla-server-terminal-094d-dos-poc_21.htmlhttp://ingehenriksen.blogspot.com/2005/11/work-in-progress-filezilla-server.htmlhttp://marc.info/?l=bugtraq&m=113140190521377&w=2http://sourceforge.net/project/shownotes.php?release_id=298735http://www.osvdb.org/20817http://www.securityfocus.com/archive/1/417307/30/0/threadedhttp://www.securityfocus.com/bid/15346http://ingehenriksen.blogspot.com/2005/11/filezilla-server-terminal-094d-dos-poc_21.htmlhttp://ingehenriksen.blogspot.com/2005/11/work-in-progress-filezilla-server.htmlhttp://marc.info/?l=bugtraq&m=113140190521377&w=2http://sourceforge.net/project/shownotes.php?release_id=298735http://www.osvdb.org/20817http://www.securityfocus.com/archive/1/417307/30/0/threadedhttp://www.securityfocus.com/bid/15346
2005-11-16
Published