2 matches found
CVE-2006-5789
War FTP Daemon WarFTPd 1.82.00-RC11 allows remote authenticated users to cause a denial of service via a large number of "%s" format strings in 1 CWD, 2 CDUP, 3 DELE, 4 NLST, 5 LIST, 6 SIZE, and possibly other commands. NOTE: it is possible that vector 1 is an off-by-one variant or incomplete fix...
CVE-2006-5789
WarFTPd 1.82.00-RC11 is affected by multiple remote format-string vulnerabilities. The OpenVAS notes indicate the server is prone to format-string issues caused by unsanitized input being passed to formatted-output functions, enabling a denial of service (and potentially arbitrary code execution)...