CVE-2008-1117
Timbuktu Pro <8.7 - Path Traversal
Title source: llmDescription
Directory traversal vulnerability in the Notes (aka Flash Notes or instant messages) feature in tb2ftp.dll in Timbuktu Pro 8.6.5 for Windows, and possibly 8.7 for Mac OS X, allows remote attackers to upload files to arbitrary locations via a destination filename with a \ (backslash) character followed by ../ (dot dot slash) sequences. NOTE: this can be leveraged for code execution by writing to a Startup folder. NOTE: this issue reportedly exists because of an incomplete fix for CVE-2007-4220.
Exploits (4)
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16339
exploitdb
WORKING POC
VERIFIED
by Core Security · pythonremotewindows
https://www.exploit-db.com/exploits/5238
exploitdb
WORKING POC
VERIFIED
by titon · perlremotewindows
https://www.exploit-db.com/exploits/4455
metasploit
WORKING POC
EXCELLENT
by MC · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/motorola/timbuktu_fileupload.rb
References (12)
Scores
EPSS
0.7887
EPSS Percentile
99.1%
Details
CWE
CWE-22
Status
published
Products (1)
netopia/timbuktu_pro
8.6.5
Published
Mar 14, 2008
Tracked Since
Feb 18, 2026