wget ftp-ls VMS listing parser stack overflow via strcpy/strcat into fixed buffer

In src/ftp-ls.c ftp_parse_vms_ls, the VMS directory listing parser copies a token containing a date string into a fixed-size stack buffer (char date_str[32]) using strcpy followed by strcat(" "). The code does not bound check the token length against the destination buffer, leading to a stack buffer overflow when parsing attacker-controlled FTP LIST output.