CVE-2005-0958

Name of the Vulnerable Software and Affected Versions mtftpd version 0.0.3

Description The issue is related to a format string vulnerability in the log do function in log.c. This vulnerability can be exploited when the statistics option is enabled, allowing remote attackers to execute arbitrary code via the CWD command.

Recommendations For mtftpd version 0.0.3, consider disabling the statistics option to prevent exploitation until a patch is available. Restrict access to the CWD command to minimize the risk of arbitrary code execution.