SmartFTP PWD Command Request Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

SmartFTP PWD Command Request Buffer Overflow Vulnerability

SmartFTP is reportedly prone to a buffer overflow. If a 'PWD' command is issued to an FTP server, an overly long response could result in a boundary condition error. Arbitrary code execution is reportedly possible.

This issue was reported for SmartFTP 1.0.973, however, other versions may also be vulnerable.