CVE-2005-0484

Name of the Vulnerable Software and Affected Versions ProFTPD versions prior to 8.1.9

Description A format string issue in gprostats for ProFTPD may allow remote attackers to execute arbitrary code via an FTP transfer with a crafted filename, causing format string specifiers to be inserted into the ProFTPD transfer log.

Recommendations For versions prior to 8.1.9, update to version 8.1.9 or later to resolve the issue. As a temporary workaround, consider restricting access to the FTP service until the update is applied.