CVE-2010-20107
FTP Synchronizer Professional <= 4.0.73.274 Stack Buffer Overflow
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
A stack-based buffer overflow exists in FTP Synchronizer Professional <= v4.0.73.274. When the client connects to an FTP server and issues a LIST command—typically during sync preview or profile creation—the server’s response containing an overly long filename triggers a buffer overflow. This results in the corruption of the Structured Exception Handler (SEH), potentially allowing remote code execution.
| CWE | CWE-121 |
| Vendor | liuxz software |
| Product | ftp synchronizer professional |
| Published | Aug 21, 2025 |
| Last Updated | Apr 7, 2026 |
Stay Ahead of the Next One
Get instant alerts for liuxz software ftp synchronizer professional
Be the first to know when new unknown vulnerabilities affecting liuxz software ftp synchronizer professional are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
Affected Versions
Liuxz Software / FTP Synchronizer Professional
* ≤ 4.0.73.274
References
raw.githubusercontent.com: https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/ftp/ftpsynch_list_reply.rb exploit-db.com: https://www.exploit-db.com/exploits/16720 web.archive.org: https://web.archive.org/web/20111016194057/https://www.corelan.be/index.php/2010/10/12/death-of-an-ftp-client/ ftpsynchronizer.com: https://www.ftpsynchronizer.com/ web.archive.org: https://web.archive.org/web/20111016235434/http://www.ftpsynchronizer.com/ vulncheck.com: https://www.vulncheck.com/advisories/ftp-synchronizer-professional-stack-buffer-overflow
Credits
myne-us