5 matches found
CVE-2005-2849
Argument injection vulnerability in Barracuda Spam Firewall running firmware 3.1.16 and 3.1.17 allows remote attackers to 1 read portions of source code via the -f option to Dig digdevice.cgi, 2 determine file existence via the -r argument to Tcpdump tcpdumpdevice.cgi or 3 modify files in the...
CVE-2005-2847
Barracuda Spam Firewall (IMG.PL) contains a remote command execution vulnerability in img.pl that allows an attacker to execute arbitrary shell commands via the f parameter. Affected firmware versions include 3.1.16 and 3.1.17; exploits exist in public advisories and Metasploit modules reference ...
CVE-2005-2848
Directory traversal vulnerability in img.pl in Barracuda Spam Firewall running firmware 3.1.16 and 3.1.17 allows remote attackers to read arbitrary files via a .. dot dot in the f parameter...
CVE-2005-2849
Argument injection vulnerability in Barracuda Spam Firewall running firmware 3.1.16 and 3.1.17 allows remote attackers to 1 read portions of source code via the -f option to Dig digdevice.cgi, 2 determine file existence via the -r argument to Tcpdump tcpdumpdevice.cgi or 3 modify files in the...
[SecuriWeb.2005.1] - Barracuda SPAM firewall advisory
ID : 2005.1 Product : Barracuda Spam Firewall Appliance Vendor : Barracuda networks Affected product : firmware = 3.1.17 Class : Directory Traveral, Remote Execution, Password Retrieving Remote : yes local : na Author : Francois Harvey fharvey at securiweb dot net Published date : 01/09/2005...