CVE-2008-0406
HTTP File Server (HFS) before 2.2c, when account names are used as log filenames, allows remote attackers to cause a denial of service (daemon crash) via a long account name.
Date published : 2008-01-28
http://www.securityfocus.com/bid/27423
http://www.securityfocus.com/archive/1/486873/100/0/threaded