CVE-2001-0697 Information

Description

NetWin SurgeFTP prior to 1.1h allows a remote attacker to cause a denial of service (crash) via an ’ls ..’ command.

Reference

http://netwinsite.com/surgeftp/manual/updates.htm http://www.secadministrator.com/Articles/Index.cfm?ArticleID=20200 http://www.securityfocus.com/archive/1/165816 http://www.securityfocus.com/bid/2442 https://exchange.xforce.ibmcloud.com/vulnerabilities/6168