Red Hat Bugzilla – Bug 251676
CVE-2007-3961 fsplib off-by-one error
Last modified: 2016-03-04 07:51:06 EST
Off-by-one error in the fsp_readdir_r function in fsplib.c in fsplib before 0.9
allows remote attackers to cause a denial of service via a directory entry whose
length is exactly MAXNAMLEN, which prevents a terminating null byte from being
gFTP contains local copy of fsplib source code to support FSP protocol.
"Red Hat does not consider a user assisted client crash such as this to be a