Computer Security
[EN] securityvulns.ru no-pyccku


Timbuktu multiple security vulnerabilities
Published:29.08.2007
Source:
SecurityVulns ID:8100
Type:remote
Threat Level:
7/10
Description:Multiple buffer overflows and directory traversal.
Affected:MOTOROLA : Timbuktu Pro 8.6
CVE:CVE-2007-4221 (Multiple buffer overflows in Motorola Timbuktu Pro before 8.6.5 for Windows allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via (1) a long user name and (2) certain malformed requests; and (3) allow remote Timbuktu servers to have an unknown impact via a malformed HELLO response, related to the Scanner component and possibly related to a malformed computer name.)
 CVE-2007-4220 (Directory traversal vulnerability in Motorola Timbuktu Pro before 8.6.5 for Windows allows remote attackers to create or delete arbitrary files via a .. (dot dot) in a Send request, probably related to the (1) Send and (2) Exchange services.)
Original documentdocumentIDEFENSE, iDefense Security Advisory 08.27.07: Motorola Timbuktu Multiple Buffer Overflow Vulnerabilities (29.08.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod