CVE-2004-2673

Name of the Vulnerable Software and Affected Versions ArGoSoft FTP Server versions prior to 1.4.1.6

Description The issue is related to multiple buffer overflows that can be triggered by remote authenticated users. This can be achieved by sending a SITE ZIP command with a long first or second argument, or a SITE COPY command with a long argument. The buffer overflows can cause a denial of service and potentially allow the execution of arbitrary code.

Recommendations For versions prior to 1.4.1.6, update to version 1.4.1.6 or later to resolve the issue. As a temporary workaround, consider restricting access to the SITE ZIP and SITE COPY commands until the update is applied.