CVE-2005-0277

Name of the Vulnerable Software and Affected Versions 3CDaemon version 2.0 revision 10

Description The issue is related to a buffer overflow in the FTP service, which can be triggered by a long username in the USER command or an FTP command with a long argument, such as cd, send, or ls. This can cause a denial of service, resulting in an application crash, and potentially allow the execution of arbitrary code.

Recommendations For version 2.0 revision 10, consider disabling the FTP service until a patch is available to prevent potential exploitation. Restrict access to the FTP commands that contain long arguments, such as cd, send, or ls, to minimize the risk of a denial of service or arbitrary code execution. Avoid using long usernames in the USER command to reduce the risk of a buffer overflow.