Description
Heap-based buffer overflow in Dream FTP Server allows remote attackers to execute arbitrary code via a USER command with a large number of format string specifiers, which triggers the overflow during processing of the Server Log.
Affected products
References
- VENDOR_ADVISORYhttp://secunia.com/advisories/23731
- EXPLOIThttps://www.exploit-db.com/exploits/3128
- MISChttp://osvdb.org/32816