gftp -- multiple vulnerabilities

2007-11-01T00:00:00
ID F8B0F83C-8BB3-11DC-BFFA-0016179B2DD5
Type freebsd
Reporter FreeBSD
Modified 2007-11-11T00:00:00

Description

Gentoo reports:

Kalle Olavi Niemitalo discovered two boundary errors in fsplib code included in gFTP when processing overly long directory or file names. A remote attacker could trigger these vulnerabilities by enticing a user to download a file with a specially crafted directory or file name, possibly resulting in the execution of arbitrary code or a Denial of Service.