Multiple buffer overflows in Ipswitch WS_FTP Server 5.05 before Hotfix 1 allow remote authenticated users to execute arbitrary code via long (1) XCRC, (2) XSHA1, or (3) XMD5 commands.
https://exchange.xforce.ibmcloud.com/vulnerabilities/28983
http://www.vupen.com/english/advisories/2006/3655
http://www.securityfocus.com/bid/20076
http://secunia.com/advisories/21932
http://ipswitch.com/support/ws_ftp-server/releases/wr505hf1.asp