Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned.

Description: The issue concerns the handling of IPv4 address values returned by an FTP server in response to the PASV command. To prevent a malicious FTP server from probing IPv4 address and port combinations on the client network, the returned address should not be trusted. Instead, the IP address of the existing connection should be used. This approach is consistent with the strategy used by other FTP clients and aligns with the modern IPv6 EPSV command, where the server response only returns a port number.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.