Vulnerabilities > Netopia

DATE CVE VULNERABILITY TITLE RISK
2008-03-14 CVE-2008-1337 Improper Input Validation vulnerability in Netopia Timbuktu PRO 8.6.5
The instant message service in Timbuktu Pro 8.6.5 RC 229 and earlier for Windows allows remote attackers to cause (1) a denial of service (daemon crash) via an invalid Version field or (2) a denial of service (CPU consumption and daemon termination) via an invalid or partial message.
network
low complexity
netopia CWE-20
5.0
2008-03-14 CVE-2008-1118 Improper Input Validation vulnerability in Netopia Timbuktu PRO 8.6.5
Timbuktu Pro 8.6.5 for Windows, and possibly 8.7 for Mac OS X, does not perform input validation before logging information fields taken from packets from a remote peer, which allows remote attackers to generate crafted log entries, and possibly avoid detection of attacks, via modified (1) computer name, (2) user name, and (3) IP address fields.
network
low complexity
netopia CWE-20
7.5
2008-03-14 CVE-2008-1117 Path Traversal vulnerability in Netopia Timbuktu PRO 8.6.5
Directory traversal vulnerability in the Notes (aka Flash Notes or instant messages) feature in tb2ftp.dll in Timbuktu Pro 8.6.5 for Windows, and possibly 8.7 for Mac OS X, allows remote attackers to upload files to arbitrary locations via a destination filename with a \ (backslash) character followed by ../ (dot dot slash) sequences.
network
low complexity
netopia CWE-22
critical
10.0
2004-12-23 CVE-2004-0810 Remote Buffer Overflow vulnerability in Netopia Timbuktu PRO mac 6.0.1
Buffer overflow in Netopia Timbuktu 7.0.3 allows remote attackers to cause a denial of service (server process crash) via a certain data string that is sent to multiple simultaneous client connections to TCP port 407.
network
low complexity
netopia
5.0
2002-03-25 CVE-2002-0135 Denial of Service vulnerability in Netopia Timbuktu Pro
Netopia Timbuktu Pro 6.0.1 and earlier allows remote attackers to cause a denial of service (crash) via a series of connections to one of the ports (1417 - 1420).
network
low complexity
netopia
5.0
2001-07-02 CVE-2001-0438 Local Security vulnerability in Netopia Timbuktu mac Initial
Preview version of Timbuktu for Mac OS X allows local users to modify System Preferences without logging in via the About Timbuktu menu.
local
low complexity
netopia
2.1
2001-03-26 CVE-2001-0185 Denial of Service vulnerability in Netopia R9100 Router
Netopia R9100 router version 4.6 allows authenticated users to cause a denial of service by using the router's telnet program to connect to the router's IP address, which causes a crash.
network
low complexity
netopia
5.0
2001-01-09 CVE-2000-1179 Unspecified vulnerability in Netopia 650-St Isdn Router 3.3.2Firmware
Netopia ISDN Router 650-ST before 4.3.5 allows remote attackers to read system logs without authentication by directly connecting to the login screen and typing certain control characters.
network
low complexity
netopia
5.0
2000-02-11 CVE-2000-0142 Unspecified vulnerability in Netopia Timbuktu PRO 2.0/5.2.1
The authentication protocol in Timbuktu Pro 2.0b650 allows remote attackers to cause a denial of service via connections to port 407 and 1417.
network
low complexity
netopia
5.0
2000-01-18 CVE-2000-0086 Unspecified vulnerability in Netopia Timbuktu PRO 2.0/3.0
Netopia Timbuktu Pro sends user IDs and passwords in cleartext, which allows remote attackers to obtain them via sniffing.
network
low complexity
netopia
5.0