CVE-2007-4844

Name of the Vulnerable Software and Affected Versions: X-Diesel Unreal Commander version 0.92 build 565 X-Diesel Unreal Commander version 0.92 build 573

Description: The issue arises when the software does not properly handle an FTP server's behavior after sending a "CWD /" command. This can lead to a denial of service in the form of an infinite loop. The denial of service can occur in two ways: (1) the FTP server repeatedly sends a 550 error response, or (2) the FTP server sends a 550 error response and then disconnects.

Recommendations: For X-Diesel Unreal Commander version 0.92 build 565, consider restricting access to FTP servers that may exploit this issue until a patch is available. For X-Diesel Unreal Commander version 0.92 build 573, avoid using the CWD / command in the affected FTP client until the issue is resolved.