CVE-2006-6767

Name of the Vulnerable Software and Affected Versions: oftpd versions prior to 0.3.7

Description: The issue allows remote attackers to cause a denial of service, resulting in the daemon aborting. This is achieved by sending either an LPRT or LPASV command with an unsupported address family, which triggers an assertion failure.

Recommendations: For versions prior to 0.3.7, update to version 0.3.7 or later to resolve the issue. As a temporary workaround, consider restricting access to the LPRT and LPASV commands to minimize the risk of exploitation.