CVE-2005-3683

Name of the Vulnerable Software and Affected Versions freeFTPd versions prior to 1.0.9

Description The issue is a stack-based buffer overflow that can be triggered when Logging is enabled. It allows remote attackers to cause a denial of service, potentially leading to application crashes. In some cases, it may also be possible for attackers to execute arbitrary code. This is achieved by sending a long USER command.

Recommendations For versions prior to 1.0.9, update to version 1.0.9 or later to resolve the issue. As a temporary workaround, consider disabling the Logging feature until a patch is available. Restrict access to the USER command to minimize the risk of exploitation.