CVE-2005-2961

Buffer overflow in the get_string_ahref function for ProZilla 1.3.7.4 and possibly earlier, with the -ftpsearch option enabled, allows remote servers to execute arbitrary code via a search response with a crafted string in the HREF field of an tag.

http://www.securityfocus.com/bid/14993

http://www.debian.org/security/2005/dsa-834