CVE-2001-0696 Information

Description

NetWin SurgeFTP 2.0a and 1.0b allows a remote attacker to cause a denial of service (crash) via a CD command to a directory with an MS-DOS device name such as con.

Reference

http://netwinsite.com/surgeftp/manual/updates.htm http://www.securityfocus.com/archive/1/191916 http://www.securityfocus.com/bid/2891 https://exchange.xforce.ibmcloud.com/vulnerabilities/6712