GEN:SID 1:1976
Message FTP RMD overflow attempt
Summary This event is generated when an attempt is made to exploit a buffer overflow vulnerability associated with CesarFTPD FTP server DELE command.
Impact Remote access.  A successful attack may permit the remote execution of arbitrary commands with system privileges.
Detailed Information CesarFTPD offers FTP servers for Windows hosts. A vulnerability exists with the DELE command that can cause a buffer overflow and permit the execution of arbitrary commands with system privileges. The buffer overflow can be caused by supplying an overly long argument to the DELE command.
Affected Systems Hosts running CesarFTP 0.98b.
Attack Scenarios An attacker can supply an overly long file argument with the DELE command, causing a buffer overflow.
Ease of Attack Simple.  
Corrective Action Upgrade to the latest non-affected version of the software.
Additional References CVE:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2001-0826

Bugtraq:
http://www.securityfocus.com/bid/2972
Rule References bugtraq: 2972
cve: 2000-0133
cve: 2001-0826
cve: 2001-1021