Mc.Iglo

**Name of the Vulnerable Software and Affected Versions** WarFTPD version 1.82 RC9 **Description** The issue allows remote authenticated users to cause a denial of service, resulting in an access violation. This can be achieved by using a CWD command with a crafted pathname, such as a large string of "%s" sequences, which may indicate a format string vulnerability. **Recommendations** For WarFTPD version 1.82 RC9, consider restricting access to the CWD command until a patch is available. As a temporary workaround, avoid using crafted pathnames, especially those containing a large number of "%s" sequences, to minimize the risk of exploitation.