CVE-2007-6263

Name of the Vulnerable Software and Affected Versions netkit-ftpd version 0.17

Description The issue is related to the dataconn function in ftpd.c, which calls fclose on an uninitialized file stream when certain modifications to support SSL are introduced. This allows remote attackers to cause a denial of service, potentially crashing the daemon, and may have other unspecified impacts via certain FTP over SSL protocol behaviors, such as breaking a passive FTP DATA connection and triggering an error in the server's SSL accept function.

Recommendations For netkit-ftpd version 0.17, consider disabling the SSL support temporarily as a workaround to minimize the risk of exploitation until a patch is available.