CVE-2006-6564

Name of the Vulnerable Software and Affected Versions FileZilla Server versions prior to 0.9.22

Description The issue allows remote attackers to cause a denial of service, resulting in a crash, by sending a malformed argument to the STOR command. This leads to a NULL pointer dereference. It is also suggested that the problem might be due to a malformed PORT command.

Recommendations For versions prior to 0.9.22, update to version 0.9.22 or later to resolve the issue. As a temporary workaround, consider restricting access to the STOR command until a patch is available.