Buffer overflow in the Log-SCR function in the "Log to Screen" feature in WinFtp Server 1.6.8 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long request.
https://exchange.xforce.ibmcloud.com/vulnerabilities/21873
http://www.securityfocus.com/bid/14581