Format string vulnerability in the log_do function in log.c for YepYep mtftpd 0.0.3, when the statistics option is enabled, allows remote malicious users to execute arbitrary code via the CWD command.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
yepyep mtftpd 0.2 |
||
yepyep mtftpd 0.3 |
||
yepyep mtftpd 0.1a |