CVE-2006-5789

Name of the Vulnerable Software and Affected Versions: War FTP Daemon (WarFTPd) version 1.82.00-RC11

Description: The issue allows remote authenticated users to cause a denial of service by sending a large number of "%s" format strings in various commands, including CWD, CDUP, DELE, NLST, LIST, SIZE, and possibly others.

Recommendations: For War FTP Daemon (WarFTPd) version 1.82.00-RC11, consider restricting access to the affected commands as a temporary workaround until a patch is available. Avoid using the vulnerable commands in the FTP daemon until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.