2 matches found
GetFullPathName overflow - was 'Re: WFTPD "Pro" 3.0 R4 Buffer Overflow'
At 02:44 PM 4/23/2001, Alun Jones wrote: The latest version of WFTPD is vulnerable to a buffer overflow in the RETR and CWD commands. The overflow can be used to completely disable the FTP server, and can probably be exploited to run arbitrary code on the server host. Again, incorrect. The buffer...
WFTPD 3.0 - 'RETR' / 'CWD' Remote Buffer Overflow
// source: https://www.securityfocus.com/bid/2644/info Invalid long strings submitted using either 'RETR' or 'CWD' commands to a host running WFTPD server, will result in the service terminating due to a buffer overflow. It may be possible for an attacker to execute arbitrary code through this...