WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing a STAT command while the LIST command is still executing.
https://exchange.xforce.ibmcloud.com/vulnerabilities/5003
http://archives.neohapsis.com/archives/bugtraq/2000-07/0295.html