Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormDr. Marian VentuneacPACKETSTORM:73064
HistoryDec 16, 2008 - 12:00 a.m.

Barracuda Spam Firewall SQL Injection

2008-12-1600:00:00
Dr. Marian Ventuneac
packetstormsecurity.com
28

0.001 Low

EPSS

Percentile

49.2%

JSON
`CVE Number: CVE-2008-1094  
Vulnerability: SQL Injection   
Risk: Medium  
Attack vector: From Remote  
  
Vulnerability Discovered: 16th June 2008  
Vendor Notified: 16th June 2008  
Advisory Released: 15th December 2008  
  
  
Abstract  
  
Barracuda Networks Spam Firewall is vulnerable to various SQL Injection attacks. When exploited by an authenticated user, the identified vulnerability can lead to Denial of Service, Database Information Disclosure, etc.  
  
  
Description  
  
The index.cgi resource was identified as being susceptible to SQL Injection attacks.   
When filtering user accounts in Users->Account View section, the pattern_x parameter (where x = 0..n) allows inserting arbitrary SQL code once filter_x parameter is set to search_count_equalsΒ‘ value.  
  
/cgi-bin/index.cgi?&user=&password=&et=&auth_type=Local&locale=en_US&realm=&primary_tab=USERS&secondary_tab=  
per_user_account_view&boolean_0=boolean_and&filter_0=search_count_equals&pattern_0=if(database() like concat(char(99),char(37)),5,0)  
  
An attacker can exploit this vulnerability by injecting arbitrary SQL code to be executed as part of the SQL query.  
  
  
Original Advisory:  
  
http://dcsl.ul.ie/advisories/02.htm  
  
  
Barracuda Networks Technical Alert  
  
http://www.barracudanetworks.com/ns/support/tech_alert.php  
  
  
Affected Versions  
  
Barracuda Spam Firewall (Firmware v3.5.11.020, Model 600)  
  
Other products/versions might be affected.  
  
  
Mitigation  
  
Vendor recommends to the following firmware version  
  
Barracuda Spam Firewall (Firmware v3.5.12.001)  
  
Alternatively, please contact Barracuda Networks for technical support.  
  
  
Credits  
  
Dr. Marian Ventuneac, [email protected]  
Data Communication Security Laboratory, Department of Electronic & Computer Engineering, University of Limerick  
  
  
Disclaimer  
  
Data Communication Security Laboratory releases this information with the vendor acceptance. DCSL is not responsible for any malicious application of the information presented in this advisory.   
`

Related

exploitpack 1
cve 1
seebug 3
securityvulns 2
prion 1
exploitdb 1
nessus 2
exploitpack
exploitpack
Barracuda Spam Firewall 3.5.11.020 Model 600 - SQL Injection
2008-12-16 00:00:00
cve
cve
CVE-2008-1094
2008-12-19 17:30:00
seebug
seebug
Barracuda Spam Firewall 3.5.11.020, Model 600 - SQL Injection Vuln
2014-07-01 00:00:00
Barracuda Spam Firewall v3.5.11.020 Model 600 SQL Injection Vuln
2008-12-16 00:00:00
Barracuda Spam Firewall v3.5.11.020, Model 600 SQL Injection Vuln
2008-12-19 00:00:00
securityvulns
securityvulns
CVE-2008-1094 - Barracuda Span Firewall SQL Injection Vulnerability
2008-12-17 00:00:00
Barracuda mail filtering applications multiple security vulnerabilities
2008-12-17 00:00:00
prion
prion
Sql injection
2008-12-19 17:30:00
exploitdb
exploitdb
Barracuda Spam Firewall 3.5.11.020 Model 600 - SQL Injection
2008-12-16 00:00:00
nessus
nessus
Barracuda Spam Firewall < 3.5.12.007 Multiple Vulnerabilities
2008-12-19 00:00:00
Barracuda Spam Firewall < 3.5.12.007 Multiple Vulnerabilities (SQLi, XSS)
2008-12-22 00:00:00

0.001 Low

EPSS

Percentile

49.2%

JSON
Related for PACKETSTORM:73064
exploitpack1cve1seebug3securityvulns2prion1exploitdb1nessus2