Directory Transversal (Smallftpd v1.02)
CWD \..\..
250 CWD command successful.


also smallftpd v0.99 avaliable to download at http://smallftpd.free.fr too
have multiple vulnerabilities.

- Format string bug: Denial of service, just type "%s %s" as login and the ftp server will crash.

- buffer overflows when a command have length >280 chars. example: cd AAAAAAAAAA...

Remote code execution possible.


this bugs seems to be patched in the lastest version.