Ipswitch · Ws Ftp · CVE-2003-0772
Name of the Vulnerable Software and Affected Versions:
WS FTP versions 3 and 4
Description:
The issue allows remote authenticated users to cause a denial of service and possibly execute arbitrary code via long arguments, specifically the APPE (append) or STAT (status) arguments.
Recommendations:
For WS FTP versions 3 and 4, consider restricting access to the APPE and STAT commands until a patch is available.
As a temporary workaround, limit the length of arguments passed to the APPE and STAT commands to prevent buffer overflows.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.