Intrusion Prevention

Motorola.Timbuktu.Pro.Directory.Traversal

Description

This indicates an attempt to exploit an arbitrary file upload vulnerability in Timbuktu Pro.
The Timbuktu Pro software contains an arbitrary file upload vulnerability which may allow an attacker to upload an executable to a startup directory of a victim's machine or upload fake system DLLs.

Affected Products

Timbuktu Pro 8.6.5 for Windows.
Timbuktu Pro 8.7 for Mac OS X may also be vulnerable.

Impact

System compromise: execution arbitrary applications on the target system.

Recommended Actions

Only allow access from trusted networks.

CVE References

CVE-2008-1117