TrollFTPD Buffer Overflow Vulnerability

TrollFTPD Buffer Overflow Vulnerability

TrollFTPD is a small FTP server offered by TrollTech.

TrollFTPD contains an exploitable buffer overflow in it's handling of long path names. The overflow condition is present when a client requests a recursive directory list.

FTP users who have the ability to create directories may be able to exploit this vulnerability and gain root access on the underlying host.