CloudMe before 1.11.0 allows an unauthenticated remote attacker that can connect to the "CloudMe Sync" client application send a malicious payload causing a buffer overflow condition. This will result in an attacker controlling the program's execution flow and allowing arbitrary code execution.
