CVE-2004-1626

This CVE involves Ability Server 2.34 (and possibly other versions), where a stack-based buffer overflow is triggered by parsing the STOR/APPE commands, allowing remote code execution. The issue is confirmed on 2.34 and has been reported in 2.25 and 2.32. A Metasploit exploit module exists (explo...

CVE-2004-1627

CVE-2004-1627 describes a remote buffer overflow in Ability Server (FTP service) versions 2.25, 2.32, 2.34 and potentially others, triggered by a long APPE command. Connected sources (CVE records and Nessus/NASL entries) confirm the vulnerability vector is over the FTP channel and could allow arb...