CVE-2005-0312

Name of the Vulnerable Software and Affected Versions WarFTPD version 1.82 RC9

Description The issue allows remote authenticated users to cause a denial of service, resulting in an access violation. This can be achieved by using a CWD command with a crafted pathname, such as a large string of "%s" sequences, which may indicate a format string vulnerability.

Recommendations For WarFTPD version 1.82 RC9, consider restricting access to the CWD command until a patch is available. As a temporary workaround, avoid using crafted pathnames, especially those containing a large number of "%s" sequences, to minimize the risk of exploitation.