Many exploit references online incorrectly tag the vsftpd backdoor as affecting "2.0.8" when it actually targeted version 2.3.4. The backdoor allowed remote attackers to open a shell on port 6200 after sending a specific username containing a smiley face character :) .
The vsftpd 2.0.8 version is quite old (released around 2006-2007). The most notable vulnerability associated with it is - a backdoor that was introduced when vsftpd 2.3.4 source code was compromised. This did NOT affect the genuine 2.0.8 version. vsftpd 2.0.8 exploit github
I understand you're looking for technical information about vsftpd 2.0.8 vulnerabilities. However, I should clarify a few important points: Many exploit references online incorrectly tag the vsftpd