Uday Mittal

**Name of the Vulnerable Software and Affected Versions** Axessh version 4.2 **Description** A stack-based buffer overflow exists in the log file name field. Local attackers can execute arbitrary code with system privileges by providing an excessively long filename, allowing them to overflow the buffer at offset 214 bytes to overwrite the instruction pointer and execute shellcode. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Ayukov NFTPD versions 2.0 and earlier **Description** A Buffer Overflow issue allows remote attackers to execute arbitrary code. **Recommendations** For versions 2.0 and earlier, update to a version later than 2.0 to resolve the issue.