CVE-2007-1485

Name of the Vulnerable Software and Affected Versions LIBFtp version 3.1-1

Description A buffer overflow issue exists in the set umask function in QFTP, allowing local users to potentially execute arbitrary code via a long -m argument. However, it is noted that QFTP is not setuid, and it is unlikely that there are web interfaces to QFTP that would accept untrusted command line arguments.

Recommendations For LIBFtp version 3.1-1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.