CVE-2007-1470

Name of the Vulnerable Software and Affected Versions LIBFtp version 5.0

Description The issue is related to multiple buffer overflows that allow user-assisted remote attackers to execute arbitrary code. This can be achieved by providing certain long arguments to specific functions, including (1) FtpArchie, (2) FtpDebugDebug, (3) FtpOpenDir, (4) FtpSize, or (5) FtpChmod.

Recommendations For LIBFtp version 5.0, as a temporary workaround, consider restricting the use of the FtpArchie, FtpDebugDebug, FtpOpenDir, FtpSize, and FtpChmod functions until a patch is available. Avoid using long arguments with these functions to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.