CVE-2008-1118

Timbuktu Pro 8.6.5 for Windows, and possibly 8.7 for Mac OS X, does not perform input validation before logging information fields taken from packets from a remote peer, which allows remote attackers to generate crafted log entries, and possibly avoid detection of attacks, via modified (1) computer name, (2) user name, and (3) IP address fields.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www.coresecurity.com/?action=item&id=2166
http://www.securityfocus.com/bid/28081	Exploit
http://secunia.com/advisories/29316	Vendor Advisory
http://securityreason.com/securityalert/3742
https://exchange.xforce.ibmcloud.com/vulnerabilities/41330
https://www.exploit-db.com/exploits/5238
http://www.securityfocus.com/archive/1/489414/100/0/threaded

Configurations

Configuration 1 (hide)

cpe:2.3:a:netopia:timbuktu_pro:8.6.5:*:windows:*:*:*:*:*

Information

Published : 2008-03-14 13:44

Updated : 2018-10-11 13:29

NVD link : CVE-2008-1118

Mitre link : CVE-2008-1118

JSON object : View

CWE

CWE-20

Improper Input Validation

Products Affected

netopia

timbuktu_pro

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.coresecurity.com/?action=item&id=2166", "name": "http://www.coresecurity.com/?action=item&id=2166", "tags": [], "refsource": "MISC"}, {"url": "http://www.securityfocus.com/bid/28081", "name": "28081", "tags": ["Exploit"], "refsource": "BID"}, {"url": "http://secunia.com/advisories/29316", "name": "29316", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://securityreason.com/securityalert/3742", "name": "3742", "tags": [], "refsource": "SREASON"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41330", "name": "timbuktu-log-security-bypass(41330)", "tags": [], "refsource": "XF"}, {"url": "https://www.exploit-db.com/exploits/5238", "name": "5238", "tags": [], "refsource": "EXPLOIT-DB"}, {"url": "http://www.securityfocus.com/archive/1/489414/100/0/threaded", "name": "20080311 CORE-2008-0204: Timbuktu Pro Remote Path Traversal and Log Injection", "tags": [], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Timbuktu Pro 8.6.5 for Windows, and possibly 8.7 for Mac OS X, does not perform input validation before logging information fields taken from packets from a remote peer, which allows remote attackers to generate crafted log entries, and possibly avoid detection of attacks, via modified (1) computer name, (2) user name, and (3) IP address fields."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-20"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2008-1118", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "HIGH", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2008-03-14T20:44Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:netopia:timbuktu_pro:8.6.5:*:windows:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-10-11T20:29Z"}

7.5 /10