Stack-based buffer overflow in Core FTP before 2.2 build 1785 allows remote FTP servers to execute arbitrary code via a crafted directory name in a CWD command reply.
http://www.securityfocus.com/bid/61786
http://www.coreftp.com/forums/viewtopic.php?t=222102