As you probably are aware of (why else did you find in here?) there is a remote exploit in proftpd up to version 1.3.0 (the Buffalo Terastation ships with proftpd 1.2.10!).

An attacker with write access can cause a denial of service - there might be also a chance of executing arbitrary code. I don't have the exploit right here so I am not able to verify this.

While there is still a little security left for us Terastation users that have their machines exposed to the internet because of TSes powerpc architecture (the usual scan-bots that try to exploit the hole will probably use i386 code) the named scan-bots surely will be able to generate a DoS - even to the TS proftpd.

But no need to hold your breath any longer! Here is a fix for you: ProFTPd-1.3.0a_TS.tar.gz

OK, beside massive trust in me (remember: it could also be a backdoored trojan horse!) you just need root access to your TS to install this update. Be sure to make a backup of your original binaries! Here is the content of the archive:

/usr/bin/ftpcount
/usr/bin/ftpdctl
/usr/bin/ftptop
/usr/bin/ftpwho 
/usr/sbin/ftpshut
/usr/sbin/proftpd
/var/run/proftpd

FYI: As you might know there is a installation of wuftpd and proftpd on the TS. Since the utilities for these two FTP servers have the same names they have a suffix to not interfere with each other. The proftpd binaries have the addon .pr and the wuftpd ones have .wu. Since the binaries in the archive do not have the suffix it is up to you to rename them or not. I didn't do it and it seems to work.