WU-FTPD < 2.4.3 Directory Structure Processing Overflow
Critical Nessus Network Monitor Plugin ID 1810
SynopsisThe remote host is vulnerable to a buffer overflow.
DescriptionThe remote WU-FTPD server is vulnerable to a buffer overflow bug when it processes directories structure names. An attacker may use this flaw by creating a huge directory structure with specially malformed names, and may be able to execute arbitrary commands on this host with the privileges of the FTP daemon (typically, root)
SolutionUpgrade to WU-FTPD 2.4.3 or higher.