Buffer Overflow Vulnerability in Seagull FTP Client by Rocket Software
CVE-2010-20007
Key Information:
- Vendor
Rocket Software
- Status
- Vendor
- CVE Published:
- 21 August 2025
Badges
What is CVE-2010-20007?
The Seagull FTP Client, specifically version 3.3 Build 409 and earlier, is vulnerable to a stack-based buffer overflow due to inadequate input validation in its FTP directory listing parser. When connecting to an FTP server, the client can mishandle a response containing an excessively long filename from a LIST command. This oversight allows for the possibility that remote attackers may exploit the vulnerability to execute arbitrary code on the victim's system. Following the discovery of this issue, users were recommended to transition to BlueZone Secure FTP for enhanced security.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
Seagull FTP Client * <= 3.3 Build 409
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.
References
EPSS Score
13% chance of being exploited in the next 30 days.
CVSS V4
Timeline
- π‘
Public PoC available
- πΎ
Exploit known to exist
Vulnerability published
Vulnerability Reserved