CVE-2011-5166

Name of the Vulnerable Software and Affected Versions KnFTP version 1.0.0

Description The issue allows remote attackers to execute arbitrary code via a long string to various commands, including the USER, PASS, REIN, QUIT, PORT, PASV, TYPE, STRU, MODE, RETR, STOR, APPE, ALLO, REST, RNFR, RNTO, ABOR, DELE, CWD, LIST, NLST, SITE, STST, HELP, NOOP, MKD, RMD, PWD, CDUP, STOU, SNMT, SYST, and XPWD commands.

Recommendations For KnFTP version 1.0.0, update to a newer version that contains a fix for this issue.