PT-2007-5413 · Motorola · Timbuktu Pro
Published
2007-08-29
·
Updated
2017-07-29
·
CVE-2007-4220
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:C/A:N |
Name of the Vulnerable Software and Affected Versions
Motorola Timbuktu Pro versions prior to 8.6.5
Description
The issue allows remote attackers to create or delete arbitrary files via a .. (dot dot) in a "Send" request, probably related to the Send and Exchange services.
Recommendations
For versions prior to 8.6.5, update to version 8.6.5 or later to resolve the issue.
Exploit
Fix
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Timbuktu Pro