216.73.217.176

CVE-2010-20107

· Published 21/08/2025 21:15 · Modified 21/08/2025 21:15

Labels: CVE-2010-20107 2025-08-21CVE-2010-20107CWE-121[email protected]

Essential information

Published
21/08/2025 21:15
Modified
21/08/2025 21:15
Author
Creator
CVSS
8.5 HIGH (v3) 8.5 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

A stack-based buffer overflow exists in FTP Synchronizer Professional <= v4.0.73.274. When the client connects to an FTP server and issues a LIST command—typically during sync preview or profile creation—the server’s response containing an overly long filename triggers a buffer overflow. This results in the corruption of the Structured Exception Handler (SEH), potentially allowing remote code execution.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
ftp synchronizer / ftp synchronizer professional cpe:2.3:a:ftp_synchronizer:ftp_synchronizer_professional:<4.0.73.274:*:*:*:*:*:*:*

References