What is CVE-2013-10057?

CVE-2013-10057 is a vulnerability in Synactis Pdf In-the-box, classified under Stack-based Buffer Overflow. Published 2025-08-01.

Is CVE-2013-10057 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

RCE in Synactis Pdf In-the-box

CVE-2013-10057

A stack-based buffer overflow vulnerability exists in Synactis PDF In-The-Box ActiveX control (PDF_IN_1.ocx), specifically the ConnectToSynactis method. When a long string is passed to this method—intended to populate the ldCmdLine argumen…

Vulnerability class: Buffer Overflow

EPSS: 0.787 (99.1th percentile) — read the EPSS interpretation.

Affected products

Synactis Pdf In-the-box

Weakness classification (CWE)

Public proof-of-concept exploits

rapid7/metasploit-framework

References

raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/w… (exploit)
www.exploit-db.com/exploits/25835 (exploit)
www.fortiguard.com/encyclopedia/ips/35840/synactis-pdf-in-the-box-connecttosyna… (third-party-advisory)
www.synactis.com/pdf-in-the-box.htm (product)
www.vulncheck.com/advisories/synactis-pdf-in-the-box-connectosynactic-stack-bas… (third-party-advisory)

Frequently asked questions

What is CVE-2013-10057?: CVE-2013-10057 is a vulnerability in Synactis Pdf In-the-box, classified under Stack-based Buffer Overflow. Published 2025-08-01.
Is CVE-2013-10057 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.