CVE-2006-6751

Name of the Vulnerable Software and Affected Versions: XM Easy Personal FTP Server versions 5.2.1 through 5.3.0

Description: The issue allows remote attackers to cause a denial of service, resulting in an application crash. This is achieved by using format string specifiers in the USER command or certain other available or nonexistent commands.

Recommendations: For XM Easy Personal FTP Server version 5.2.1, update to a version later than 5.3.0 to resolve the issue. For XM Easy Personal FTP Server version 5.3.0, update to a version later than 5.3.0 to resolve the issue. As a temporary workaround, consider restricting access to the USER command and other potentially vulnerable commands until a patch is available.