FileZilla / FileZilla Server Multiple Vulnerabilities
Secunia Advisory: SA22094 Release Date: 2006-10-02
Critical: Highly critical
Impact: DoS; System access
Where: From remote
Solution Status: Vendor Patch
Software: FileZilla 2.x / FileZilla Server 0.x
Some vulnerabilities have been reported in FileZilla and FileZilla Server, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
The vulnerabilities are caused due to the use of a vulnerable OpenSSL version.
For more information:
FileZilla: Update to version 2.2.28.
FileZilla Server: Update to version 0.9.19.
Original Advisory: http://sourceforge.net/forum/forum.php?forum_id=617485
Other References: SA22130: http://secunia.com/advisories/22130/