CVE-2008-1117

Exploitation Summary

EIP tracks 4 public exploits for CVE-2008-1117. PoCs published by Metasploit, Core Security, titon, including Metasploit module exploits/windows/motorola/timbuktu_fileupload.

AI-analyzed exploit summary This Metasploit module exploits a directory traversal vulnerability in Timbuktu Pro for Windows 8.6.5, allowing arbitrary file upload and remote code execution by sending a malicious payload to the target service on port 407.

Description

Directory traversal vulnerability in the Notes (aka Flash Notes or instant messages) feature in tb2ftp.dll in Timbuktu Pro 8.6.5 for Windows, and possibly 8.7 for Mac OS X, allows remote attackers to upload files to arbitrary locations via a destination filename with a \ (backslash) character followed by ../ (dot dot slash) sequences. NOTE: this can be leveraged for code execution by writing to a Startup folder. NOTE: this issue reportedly exists because of an incomplete fix for CVE-2007-4220.

Exploits (4)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16339

View Code ZIP pw:eip

This Metasploit module exploits a directory traversal vulnerability in Timbuktu Pro for Windows 8.6.5, allowing arbitrary file upload and remote code execution by sending a malicious payload to the target service on port 407.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Timbuktu Pro for Windows 8.6.5

No auth needed

Prerequisites: Network access to the target service on port 407 · Timbuktu Pro for Windows 8.6.5 installed and running

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1210 - Exploitation of Remote Services

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by Core Security · pythonremotewindows

https://www.exploit-db.com/exploits/5238

View Code ZIP pw:eip

This PoC exploits a path traversal vulnerability in Timbuktu Pro to upload arbitrary files to a remote system and forge log entries. It uses a sequence of crafted packets to bypass filters and achieve remote file write.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Timbuktu Pro (versions prior to the fix for CVE-2008-1118)

No auth needed

Prerequisites: Network access to the target's Timbuktu Pro service (TCP/407)

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by titon · perlremotewindows

https://www.exploit-db.com/exploits/4455

View Code ZIP pw:eip

This exploit leverages a directory traversal vulnerability in Timbuktu Pro to arbitrarily delete or create files on the target system. It sends a series of crafted packets to manipulate file operations without authentication.

Classification

Working Poc 95%

Attack Type

Other

Complexity

Moderate

Reliability

Reliable

Target: Timbuktu Pro <= 8.6.5

No auth needed

Prerequisites: Network access to the Timbuktu Pro service (port 407 by default)

MITRE ATT&CK

T1005 - Data from Local System T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC EXCELLENT

by MC · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/motorola/timbuktu_fileupload.rb

View Code ZIP pw:eip

This Metasploit module exploits a directory traversal vulnerability in Timbuktu Pro for Windows 8.6.5, allowing arbitrary file upload and remote code execution via a crafted payload.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Motorola Timbuktu Pro for Windows 8.6.5

No auth needed

Prerequisites: Network access to the target system on port 407

MITRE ATT&CK