Buffer Overflow Vulnerabilities in Motorola Timbuktu Pro for Windows
CVE-2007-4221

Currently unrated

Key Information:

Vendor: Motorola
Status: Timbuktu
Vendor: CVE Published:; 29 August 2007

Summary

Multiple buffer overflow vulnerabilities in Motorola Timbuktu Pro prior to version 8.6.5 for Windows can lead to a denial of service, causing the daemon to crash, or potentially allow remote attackers to execute arbitrary code. These vulnerabilities are exploited via suggested means such as supplying excessively long usernames or sending specially crafted malformed requests. Additionally, an unknown impact can result from malformed HELLO responses from remote Timbuktu servers, particularly concerning the Scanner component and possibly malformed computer names.

References

http://www.securitytracker.com/id?1018614

vdb-entryx_refsource_SECTRACK

https://exchange.xforce.ibmcloud.com/vulnerabilities/36282

vdb-entryx_refsource_XF

ftp://ftp-xo.netopia.com/evaluation/docs/timbuktu/win/865...

x_refsource_CONFIRM

EPSS Score

16% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 29, 2007
Vulnerability Reserved
Aug 8, 2007