CVE-2003-0772

Name of the Vulnerable Software and Affected Versions: WS FTP versions 3 and 4

Description: The issue allows remote authenticated users to cause a denial of service and possibly execute arbitrary code via long arguments, specifically the APPE (append) or STAT (status) arguments.

Recommendations: For WS FTP versions 3 and 4, consider restricting access to the APPE and STAT commands until a patch is available. As a temporary workaround, limit the length of arguments passed to the APPE and STAT commands to prevent buffer overflows. At the moment, there is no information about a newer version that contains a fix for this vulnerability.