Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Directory traversal vulnerability in Motorola Timbuktu Pro before 8.6.5 for Windows allows remote attackers to create or delete arbitrary files via a .. (dot dot) in a Send request, probably related to the (1) Send and (2) Exchange services.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Motorola Timbuktu Pro远程目录遍历漏洞
Vulnerability Description
Motorola的Timbuktu Pro是一款远程控制软件,允许远程访问计算机桌面。 Timbuktu在处理文件名和目录时存在漏洞,远程攻击者可能利用这些漏洞非授权访问文件。 Timbuktu在处理Send请求时没有正确地检查目录遍历序列,如果在请求中包含了../../../之类序列的话,攻击者就可以向预期位置之外写入内容;此外,如果文件已存在的话,就会以新文件名创建文件,但如果在传输完成之前断开了连接,Timbuktu就会删除最初所指定的文件名。
CVSS Information
N/A
Vulnerability Type
N/A