Lucene search
K

5 matches found

NVD
NVD
added 2005/09/08 10:3 a.m.19 views

CVE-2005-2849

Argument injection vulnerability in Barracuda Spam Firewall running firmware 3.1.16 and 3.1.17 allows remote attackers to 1 read portions of source code via the -f option to Dig digdevice.cgi, 2 determine file existence via the -r argument to Tcpdump tcpdumpdevice.cgi or 3 modify files in the...

6.4CVSS7.2AI score0.01387EPSS
Exploits0References4
CVE
CVE
added 2005/09/08 4:0 a.m.60 views

CVE-2005-2847

Barracuda Spam Firewall (IMG.PL) contains a remote command execution vulnerability in img.pl that allows an attacker to execute arbitrary shell commands via the f parameter. Affected firmware versions include 3.1.16 and 3.1.17; exploits exist in public advisories and Metasploit modules reference ...

7.5CVSS7.8AI score0.53375EPSS
Exploits8References5Affected Software1
Cvelist
Cvelist
added 2005/09/08 4:0 a.m.17 views

CVE-2005-2848

Directory traversal vulnerability in img.pl in Barracuda Spam Firewall running firmware 3.1.16 and 3.1.17 allows remote attackers to read arbitrary files via a .. dot dot in the f parameter...

6.8AI score0.0877EPSS
Exploits1References6
Cvelist
Cvelist
added 2005/09/08 4:0 a.m.24 views

CVE-2005-2849

Argument injection vulnerability in Barracuda Spam Firewall running firmware 3.1.16 and 3.1.17 allows remote attackers to 1 read portions of source code via the -f option to Dig digdevice.cgi, 2 determine file existence via the -r argument to Tcpdump tcpdumpdevice.cgi or 3 modify files in the...

7.2AI score0.01387EPSS
Exploits0References4
securityvulns
securityvulns
added 2005/09/02 12:0 a.m.37 views

[SecuriWeb.2005.1] - Barracuda SPAM firewall advisory

ID : 2005.1 Product : Barracuda Spam Firewall Appliance Vendor : Barracuda networks Affected product : firmware = 3.1.17 Class : Directory Traveral, Remote Execution, Password Retrieving Remote : yes local : na Author : Francois Harvey fharvey at securiweb dot net Published date : 01/09/2005...

0.1AI score
Exploits0
Rows per page
Query Builder