CVE-2005-2961 Information

Description

Buffer overflow in the get_string_ahref function for ProZilla 1.3.7.4 and possibly earlier with the -ftpsearch option enabled allows remote servers to execute arbitrary code via a search response with a crafted string in the HREF field of an A tag.

Reference

http://secunia.com/advisories/17021/ http://secunia.com/advisories/17035 http://www.debian.org/security/2005/dsa-834 http://www.securityfocus.com/bid/14993 https://exchange.xforce.ibmcloud.com/vulnerabilities/22491