CVE-2005-3589

high

Description

Buffer overflow in FileZilla Server Terminal 0.9.4d may allow remote attackers to cause a denial of service (terminal crash) via a long USER ftp command.

References

http://www.securityfocus.com/bid/15346

http://www.securityfocus.com/archive/1/417307/30/0/threaded

http://www.osvdb.org/20817

http://sourceforge.net/project/shownotes.php?release_id=298735

http://marc.info/?l=bugtraq&m=113140190521377&w=2

http://ingehenriksen.blogspot.com/2005/11/work-in-progress-filezilla-server.html

http://ingehenriksen.blogspot.com/2005/11/filezilla-server-terminal-094d-dos-poc_21.html

Details

Source: Mitre, NVD

Published: 2005-11-16

Updated: 2018-10-19

Risk Information

CVSS v2

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H