Solar FTP Server 2.1.2 has been released. In this version there was fixed only critical bugs with application vulnerability. Fixed two issues:
- If you send a 2000 byte command with the “PASV” command, you can crash the application.
- A remote attacker can potentially disable the FTP service by sending “USER” command with incorrect data.
Actually it’s the same issue with formatting string and recording in log. In this version we have tried to fix, so that in future no such problems arise again.
In the next version we will add new features. We are happy to listen to your wishes regarding new application features!