CVE-2008-1117
Timbuktu Pro <8.7 - Path Traversal
Title source: llmDescription
Directory traversal vulnerability in the Notes (aka Flash Notes or instant messages) feature in tb2ftp.dll in Timbuktu Pro 8.6.5 for Windows, and possibly 8.7 for Mac OS X, allows remote attackers to upload files to arbitrary locations via a destination filename with a \ (backslash) character followed by ../ (dot dot slash) sequences. NOTE: this can be leveraged for code execution by writing to a Startup folder. NOTE: this issue reportedly exists because of an incomplete fix for CVE-2007-4220.
Exploits (4)
metasploit
WORKING POC
EXCELLENT
by MC · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/motorola/timbuktu_fileupload.rb
exploitdb
WORKING POC
VERIFIED
by titon · perlremotewindows
https://www.exploit-db.com/exploits/4455
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16339
exploitdb
WORKING POC
VERIFIED
by Core Security · pythonremotewindows
https://www.exploit-db.com/exploits/5238
References (12)
Scores
EPSS
0.7887
EPSS Percentile
99.0%
Classification
CWE
CWE-22
Status
draft
Affected Products (1)
netopia/timbuktu_pro
Timeline
Published
Mar 14, 2008
Tracked Since
Feb 18, 2026