Lucene search

[email protected]CVE-2005-0431

HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-0431

2005-05-0204:00:00

[email protected]

web.nvd.nist.gov

barracuda

spam

firewall

open mail relay

cve-2005-0431

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

4.6 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.6%

JSON

Barracuda Spam Firewall 3.1.10 and earlier does not restrict the domains that white-listed domains can send mail to, which allows members of white-listed domains to use Barracuda as an open mail relay for spam.

Affected configurations

NVD

Node

barracuda_networksbarracuda_spam_firewallMatch3.1.10

CPENameOperatorVersion
barracuda_networks:barracuda_spam_firewallbarracuda networks barracuda spam firewalleq3.1.10

CPE	Name	Operator	Version
barracuda_networks:barracuda_spam_firewall	barracuda networks barracuda spam firewall	eq	3.1.10

References

marc.info/?l=bugtraq&m=110805534732492&w=2

secunia.com/advisories/14243

exchange.xforce.ibmcloud.com/vulnerabilities/19283

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

4.6 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.6%

JSON

Related for CVE-2005-0431

cvelist1 nvd1 openvas2