CVE-2010-0625

Name of the Vulnerable Software and Affected Versions Novell NetWare versions 5.1 through 6.5 SP8 with NWFTPD.nlm before 5.10.01

Description The issue is related to a stack-based buffer overflow in the FTP server, allowing remote authenticated users to potentially execute arbitrary code or cause a denial of service by crashing the daemon. This can be achieved through a long command, specifically the MKD, RMD, RNFR, or DELE commands.

Recommendations For Novell NetWare versions 5.1 through 6.5 SP8 with NWFTPD.nlm before 5.10.01, update NWFTPD.nlm to version 5.10.01 or later to resolve the issue.