Reported December 23, 2003 by Jan-Olivier Filiols and Philippe Oechslin.
PlatinumFTPserver 1.0.18 for Windows
A vulnerability in PlatinumFTPserver 1.0.18 for Windows can result in the execution of arbitrary code on the vulnerable system. This vulnerability occurs because the product permits remote attackers to supply formatting strings to the FTP server.
The discoverer posted the following code as proof of concept:
rename filename %s%s%s%s
<span style="font-family:Verdana"><a href="http://www.roboshareware.com/indexplatinumftp.php" style="color: blue; text-decoration: underline; text-underline: single">PlatinumFTP</a> has been notified.</h3>
Discovered by Jan-Olivier Filiols and Philippe Oechslin.