Lucene search

[email protected]CVE-2007-4220

HistoryAug 29, 2007 - 1:17 a.m.

CVE-2007-4220

2007-08-2901:17:00

CWE-22

[email protected]

web.nvd.nist.gov

motorola

timbuktu pro

windows

vulnerability

directory traversal

remote attackers

file creation

file deletion

nvd

6.9 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:C/A:N

0.018 Low

EPSS

Percentile

87.8%

JSON

Directory traversal vulnerability in Motorola Timbuktu Pro before 8.6.5 for Windows allows remote attackers to create or delete arbitrary files via a … (dot dot) in a Send request, probably related to the (1) Send and (2) Exchange services.

CPENameOperatorVersion
motorola:timbuktumotorola timbuktueq8.6.3.1367

CPE	Name	Operator	Version
motorola:timbuktu	motorola timbuktu	eq	8.6.3.1367

References

ftp://ftp-xo.netopia.com/evaluation/docs/timbuktu/win/865/relnotes/TB2Win865Evalrn.pdf

labs.idefense.com/intelligence/vulnerabilities/display.php?id=589

secunia.com/advisories/26588

www.securityfocus.com/bid/25453

www.securitytracker.com/id?1018614

www.vupen.com/english/advisories/2007/2990

exchange.xforce.ibmcloud.com/vulnerabilities/36273

6.9 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:C/A:N

0.018 Low

EPSS

Percentile

87.8%

JSON

Related for CVE-2007-4220

prion2 seebug1 nessus1 securityvulns1 cve1