{"id": "SECURITYVULNS:DOC:19900", "bulletinFamily": "software", "title": "IRM Security Advisory : Barracuda Networks Spam Firewall Cross-Site Scripting Vulnerability", "description": "Barracuda Networks Spam Firewall Cross-Site Scripting Vulnerability\r\nCVE Number: CVE-2008-2333\r\n\r\n\r\nVulnerability Type / Importance: Cross-Site Scripting (Reflected) /\r\nMedium\r\n\r\nProblem Discovered 24 April 2008\r\nVendor Contacted 24 April 2008\r\nAdvisory Published 22 May 2008\r\n\r\nAbstract\r\nThe Barracuda Spam Firewall device web administration interface is\r\nvulnerable to a reflected cross-site scripting vulnerability which may\r\nallow theft of administrative credentials or downloading of malicious\r\ncontent.\r\n\r\nDescription:\r\n\r\nThe Barracuda device presents LDAP testing functionality via a script\r\ncalled 'ldap_test.cgi'. The script does not sufficiently validate\r\nuser-supplied input within the 'email' parameter. As a result,\r\nclient-supplied script code can be injected into the 'email' parameter\r\nthat would execute in the browser within the security context of the\r\nBarracuda device.\r\nVendor information:\r\nhttp://www.barracudanetworks.com/ns/support/tech_alert.php\r\n\r\nProof of Concept:\r\n\r\nhttps://<vulnerable_host>/cgi-bin/ldap_test.cgi?host=127.0.0.1&port=1&tl\r\ns_mode=tls_mode&tls_require=&username=&password=&filter=&searchbase=&uni\r\nque_attr=&email_attr=&domain=*&email=%3Cscript%3Ealert(document.cookie)%\r\n3C/script%3E\r\n\r\nMitigation:\r\n\r\nAccess to the web management application can be limited by IP address.\r\nFirmware release 3.5.11.025 has been released by the vendor to address\r\nthis issue; however the patch has not been tested by IRM.\r\n\r\nTested/Affected Versions:\r\n\r\nIRM confirmed the presence of this vulnerability in Barracuda Spam\r\nFirewall 600 Firmware 3.5.11.020.\r\nThe vendor has confirmed the issue exists in all versions prior to\r\n3.5.11.025.\r\n\r\nCredits\r\n\r\nResearch and Advisory: Information Risk Management Plc.\r\n\r\nAbout IRM:\r\n\r\nInformation Risk Management Plc (IRM) is a vendor independent\r\ninformation risk consultancy, founded in 1998. IRM has become a leader\r\nin client side risk assessment, technical level auditing and in the\r\nresearch and development of security vulnerabilities and tools. IRM is\r\nheadquartered in London with Technical Centres in Europe and Asia as\r\nwell as Regional Offices in the Far East and North America. Please visit\r\nour website at www.irmplc.com for further information.\r\n\r\nDisclaimer:\r\n\r\nAll information in this advisory is provided on an 'as is' basis in the\r\nhope that it will be useful. Information Risk Management Plc is not\r\nresponsible for any risks or occurrences caused by the application of\r\nthis information.", "published": "2008-05-24T00:00:00", "modified": "2008-05-24T00:00:00", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:19900", "reporter": "Securityvulns", "references": [], "cvelist": ["CVE-2008-2333"], "type": "securityvulns", "lastseen": "2018-08-31T11:10:26", "edition": 1, "viewCount": 5, "enchantments": {"score": {"value": 6.5, "vector": "NONE", "modified": "2018-08-31T11:10:26", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2008-2333"]}, {"type": "exploitdb", "idList": ["EDB-ID:31828"]}, {"type": "seebug", "idList": ["SSV:3326"]}, {"type": "nessus", "idList": ["4518.PRM", "BARRACUDA_LDAP_TEST_XSS.NASL"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:66610"]}], "modified": "2018-08-31T11:10:26", "rev": 2}, "vulnersScore": 6.5}, "affectedSoftware": [], "immutableFields": [], "cvss2": {}, "cvss3": {}}

{"cve": [{"id": "CVE-2008-2333", "bulletinFamily": "NVD", "title": "CVE-2008-2333", "description": "Cross-site scripting (XSS) vulnerability in ldap_test.cgi in Barracuda Spam Firewall (BSF) before 3.5.11.025 allows remote attackers to inject arbitrary web script or HTML via the email parameter.", "published": "2008-05-23T15:32:00", "modified": "2018-10-11T20:40:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2333", "reporter": "cve@mitre.org", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/42594", "http://www.securityfocus.com/archive/1/492475/100/0/threaded", "http://www.irmplc.com/index.php/168-Advisory-027", "http://www.barracudanetworks.com/ns/support/tech_alert.php", "http://www.securitytracker.com/id?1020108", "http://www.securityfocus.com/bid/29340", "http://secunia.com/advisories/30362", "http://www.vupen.com/english/advisories/2008/1627/references"], "cvelist": ["CVE-2008-2333"], "type": "cve", "lastseen": "2021-04-21T20:41:34", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.03.055"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.4.10.102"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.03.053"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.16"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.18"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.10"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.01.001"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.3"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.15.026"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.17"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.0.54"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.4"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "le", "version": "3.5.11.020"}], "bulletinFamily": "NVD", "cpe": ["cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.16", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.4.10.102", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.15.026", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.17", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.3", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.10", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.03.055", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.5.11.020", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.01.001", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.18", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.0.54", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.4", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.03.053"], "cpe23": ["cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.055:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.3:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.18:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4.10.102:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.17:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.16:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.01.001:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.15.026:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.5.11.020:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.10:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.053:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.0.54:*:*:*:*:*:*:*"], "cpeConfiguration": {}, "cvelist": ["CVE-2008-2333"], "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true}, "cvss3": {}, "cwe": ["CWE-79"], "description": "Cross-site scripting (XSS) vulnerability in ldap_test.cgi in Barracuda Spam Firewall (BSF) before 3.5.11.025 allows remote attackers to inject arbitrary web script or HTML via the email parameter.", "edition": 2, "enchantments": {"dependencies": {"modified": "2020-09-21T13:59:16", "references": [{"idList": ["EDB-ID:31828"], "type": "exploitdb"}, {"idList": ["BARRACUDA_LDAP_TEST_XSS.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:DOC:19900"], "type": "securityvulns"}, {"idList": ["SSV:3326"], "type": "seebug"}, {"idList": ["PACKETSTORM:66610"], "type": "packetstorm"}], "rev": 2}, "score": {"modified": "2020-09-21T13:59:16", "rev": 2, "value": 4.7, "vector": "NONE"}}, "hash": "117807a283cef9b4c25f529cf888353bb50cd23fde49f1c9c2e3097b358daaed", "hashmap": [{"hash": "25131d66a9f3961140b068f4b41aa42b", "key": "cvss2"}, {"hash": "2e6fda6c85b450762054197c86ba2daf", "key": "href"}, {"hash": "3c526e4d53fba30e3b9a8dc804d847a8", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "1f256a64c7480dc03404fe07a1c98530", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpeConfiguration"}, {"hash": "8bad8101ba16de1ce3af71b343e704a6", "key": "references"}, {"hash": "e303168210dc90361d915f04d3f344b7", "key": "cpe"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d7476ab4840bc2917a3d30a052f9b06f", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "841191d77ea61ce3e1504a1e2a2fc48f", "key": "modified"}, {"hash": "6fb5259f675e607b25c8992c23d2efab", "key": "affectedSoftware"}, {"hash": "34e69e045b64924bccf865d56b6918a2", "key": "cwe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "5ade4bb4b1cdaa2832309cbc31515875", "key": "cvelist"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "f74a1c24e49a5ecb0eefb5e51d4caa14", "key": "cvss"}, {"hash": "31332760ebdb67b6f0f4ee434cf1b4ef", "key": "cpe23"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2333", "id": "CVE-2008-2333", "lastseen": "2020-09-21T13:59:16", "modified": "2018-10-11T20:40:00", "objectVersion": "1.3", "published": "2008-05-23T15:32:00", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/42594", "http://www.securityfocus.com/archive/1/492475/100/0/threaded", "http://www.irmplc.com/index.php/168-Advisory-027", "http://www.barracudanetworks.com/ns/support/tech_alert.php", "http://www.securitytracker.com/id?1020108", "http://www.securityfocus.com/bid/29340", "http://secunia.com/advisories/30362", "http://www.vupen.com/english/advisories/2008/1627/references"], "reporter": "cve@mitre.org", "title": "CVE-2008-2333", "type": "cve", "viewCount": 1}, "differentElements": ["cpeConfiguration"], "edition": 2, "lastseen": "2020-09-21T13:59:16"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.03.055"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.4.10.102"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.03.053"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.16"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.18"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.10"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.01.001"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.3"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.15.026"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.17"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.0.54"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.4"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "le", "version": "3.5.11.020"}], "bulletinFamily": "NVD", "cpe": ["cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.16", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.4.10.102", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.15.026", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.17", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.3", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.10", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.03.055", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.5.11.020", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.01.001", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.18", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.0.54", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.4", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.03.053"], "cpe23": ["cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.055:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.3:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.18:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4.10.102:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.17:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.16:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.01.001:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.15.026:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.5.11.020:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.10:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.053:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.0.54:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.15.026:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.01.001:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.053:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.17:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.3:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.055:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.5.11.020:*:*:*:*:*:*:*", "versionEndIncluding": "3.5.11.020", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4.10.102:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.0.54:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.10:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.18:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.16:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2008-2333"], "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true}, "cvss3": {}, "cwe": ["CWE-79"], "description": "Cross-site scripting (XSS) vulnerability in ldap_test.cgi in Barracuda Spam Firewall (BSF) before 3.5.11.025 allows remote attackers to inject arbitrary web script or HTML via the email parameter.", "edition": 3, "enchantments": {"dependencies": {"modified": "2020-10-03T11:50:59", "references": [{"idList": ["EDB-ID:31828"], "type": "exploitdb"}, {"idList": ["BARRACUDA_LDAP_TEST_XSS.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:DOC:19900"], "type": "securityvulns"}, {"idList": ["SSV:3326"], "type": "seebug"}, {"idList": ["PACKETSTORM:66610"], "type": "packetstorm"}], "rev": 2}, "exploitation": {"modified": "2020-10-03T11:50:59", "wildExploited": false, "wildExploitedSources": []}, "score": {"modified": "2020-10-03T11:50:59", "rev": 2, "value": 4.7, "vector": "NONE"}}, "hash": "01c074770576204e2d931ba9647270f94cc79b3c34157371dab07ced8d8b555c", "hashmap": [{"hash": "25131d66a9f3961140b068f4b41aa42b", "key": "cvss2"}, {"hash": "2e6fda6c85b450762054197c86ba2daf", "key": "href"}, {"hash": "3c526e4d53fba30e3b9a8dc804d847a8", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "1f256a64c7480dc03404fe07a1c98530", "key": "description"}, {"hash": "8bad8101ba16de1ce3af71b343e704a6", "key": "references"}, {"hash": "e303168210dc90361d915f04d3f344b7", "key": "cpe"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d7476ab4840bc2917a3d30a052f9b06f", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "841191d77ea61ce3e1504a1e2a2fc48f", "key": "modified"}, {"hash": "6fb5259f675e607b25c8992c23d2efab", "key": "affectedSoftware"}, {"hash": "34e69e045b64924bccf865d56b6918a2", "key": "cwe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "5ade4bb4b1cdaa2832309cbc31515875", "key": "cvelist"}, {"hash": "20814ee681f0ebbd408494f3b25f2843", "key": "cpeConfiguration"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "f74a1c24e49a5ecb0eefb5e51d4caa14", "key": "cvss"}, {"hash": "31332760ebdb67b6f0f4ee434cf1b4ef", "key": "cpe23"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2333", "id": "CVE-2008-2333", "lastseen": "2020-10-03T11:50:59", "modified": "2018-10-11T20:40:00", "objectVersion": "1.3", "published": "2008-05-23T15:32:00", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/42594", "http://www.securityfocus.com/archive/1/492475/100/0/threaded", "http://www.irmplc.com/index.php/168-Advisory-027", "http://www.barracudanetworks.com/ns/support/tech_alert.php", "http://www.securitytracker.com/id?1020108", "http://www.securityfocus.com/bid/29340", "http://secunia.com/advisories/30362", "http://www.vupen.com/english/advisories/2008/1627/references"], "reporter": "cve@mitre.org", "title": "CVE-2008-2333", "type": "cve", "viewCount": 2}, "differentElements": ["affectedSoftware"], "edition": 3, "lastseen": "2020-10-03T11:50:59"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.03.055"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.4.10.102"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.03.053"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.16"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.18"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.10"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.01.001"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.3"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.15.026"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.17"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.0.54"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.4"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "le", "version": "3.5.11.020"}], "bulletinFamily": "NVD", "cpe": ["cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.16", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.4.10.102", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.15.026", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.17", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.3", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.10", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.03.055", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.5.11.020", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.01.001", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.18", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.0.54", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.4", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.03.053"], "cpe23": ["cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.055:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.3:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.18:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4.10.102:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.17:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.16:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.01.001:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.15.026:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.5.11.020:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.10:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.053:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.0.54:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.15.026:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.01.001:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.053:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.17:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.3:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.055:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.5.11.020:*:*:*:*:*:*:*", "versionEndIncluding": "3.5.11.020", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4.10.102:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.0.54:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.10:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.18:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.16:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2008-2333"], "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true}, "cvss3": {}, "cwe": ["CWE-79"], "description": "Cross-site scripting (XSS) vulnerability in ldap_test.cgi in Barracuda Spam Firewall (BSF) before 3.5.11.025 allows remote attackers to inject arbitrary web script or HTML via the email parameter.", "edition": 6, "enchantments": {"dependencies": {"modified": "2021-02-02T05:35:14", "references": [{"idList": ["EDB-ID:31828"], "type": "exploitdb"}, {"idList": ["BARRACUDA_LDAP_TEST_XSS.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:DOC:19900"], "type": "securityvulns"}, {"idList": ["SSV:3326"], "type": "seebug"}, {"idList": ["PACKETSTORM:66610"], "type": "packetstorm"}], "rev": 2}, "score": {"modified": "2021-02-02T05:35:14", "rev": 2, "value": 4.7, "vector": "NONE"}}, "extraReferences": [{"name": "http://www.barracudanetworks.com/ns/support/tech_alert.php", "refsource": "CONFIRM", "tags": [], "url": "http://www.barracudanetworks.com/ns/support/tech_alert.php"}, {"name": "barracuda-email-xss(42594)", "refsource": "XF", "tags": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42594"}, {"name": "29340", "refsource": "BID", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/29340"}, {"name": "http://www.irmplc.com/index.php/168-Advisory-027", "refsource": "MISC", "tags": [], "url": "http://www.irmplc.com/index.php/168-Advisory-027"}, {"name": "30362", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/30362"}, {"name": "1020108", "refsource": "SECTRACK", "tags": [], "url": "http://www.securitytracker.com/id?1020108"}, {"name": "ADV-2008-1627", "refsource": "VUPEN", "tags": [], "url": "http://www.vupen.com/english/advisories/2008/1627/references"}, {"name": "20080522 IRM Security Advisory : Barracuda Networks Spam Firewall Cross-Site Scripting Vulnerability", "refsource": "BUGTRAQ", "tags": [], "url": "http://www.securityfocus.com/archive/1/492475/100/0/threaded"}], "hash": "00e523e7ee5b64c6d5a4e5f59b337459825928f2d32ca136d13e3a4ffb2673a8", "hashmap": [{"hash": "25131d66a9f3961140b068f4b41aa42b", "key": "cvss2"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "2e6fda6c85b450762054197c86ba2daf", "key": "href"}, {"hash": "3c526e4d53fba30e3b9a8dc804d847a8", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "1f256a64c7480dc03404fe07a1c98530", "key": "description"}, {"hash": "8bad8101ba16de1ce3af71b343e704a6", "key": "references"}, {"hash": "5b418d6202daa487e888c8937fb1406c", "key": "extraReferences"}, {"hash": "e303168210dc90361d915f04d3f344b7", "key": "cpe"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d7476ab4840bc2917a3d30a052f9b06f", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "841191d77ea61ce3e1504a1e2a2fc48f", "key": "modified"}, {"hash": "6fb5259f675e607b25c8992c23d2efab", "key": "affectedSoftware"}, {"hash": "34e69e045b64924bccf865d56b6918a2", "key": "cwe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "5ade4bb4b1cdaa2832309cbc31515875", "key": "cvelist"}, {"hash": "20814ee681f0ebbd408494f3b25f2843", "key": "cpeConfiguration"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "f74a1c24e49a5ecb0eefb5e51d4caa14", "key": "cvss"}, {"hash": "31332760ebdb67b6f0f4ee434cf1b4ef", "key": "cpe23"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2333", "id": "CVE-2008-2333", "immutableFields": [], "lastseen": "2021-02-02T05:35:14", "modified": "2018-10-11T20:40:00", "objectVersion": "1.5", "published": "2008-05-23T15:32:00", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/42594", "http://www.securityfocus.com/archive/1/492475/100/0/threaded", "http://www.irmplc.com/index.php/168-Advisory-027", "http://www.barracudanetworks.com/ns/support/tech_alert.php", "http://www.securitytracker.com/id?1020108", "http://www.securityfocus.com/bid/29340", "http://secunia.com/advisories/30362", "http://www.vupen.com/english/advisories/2008/1627/references"], "reporter": "cve@mitre.org", "title": "CVE-2008-2333", "type": "cve", "viewCount": 3}, "different_elements": ["cpeConfiguration"], "edition": 6, "lastseen": "2021-02-02T05:35:14"}, {"bulletin": {"affectedSoftware": [{"name": "barracuda_networks barracuda_spam_firewall", "operator": "eq", "version": "3.3.01.001"}, {"name": "barracuda_networks barracuda_spam_firewall", "operator": "eq", "version": "3.3.3"}, {"name": "barracuda_networks barracuda_spam_firewall", "operator": "eq", "version": "3.3.15.026"}, {"name": "barracuda_networks barracuda_spam_firewall", "operator": "eq", "version": "3.3.03.053"}, {"name": "barracuda_networks barracuda_spam_firewall", "operator": "eq", "version": "3.4"}, {"name": "barracuda_networks barracuda_spam_firewall", "operator": "eq", "version": "3.4.10.102"}, {"name": "barracuda_networks barracuda_spam_firewall", "operator": "eq", "version": "3.1.16"}, {"name": "barracuda_networks barracuda_spam_firewall", "operator": "eq", "version": "3.3.0.54"}, {"name": "barracuda_networks barracuda_spam_firewall", "operator": "eq", "version": "3.3.03.055"}, {"name": "barracuda_networks barracuda_spam_firewall", "operator": "eq", "version": "3.1.17"}, {"name": "barracuda_networks barracuda_spam_firewall", "operator": "le", "version": "3.5.11.020"}, {"name": "barracuda_networks barracuda_spam_firewall", "operator": "eq", "version": "3.1.18"}, {"name": "barracuda_networks barracuda_spam_firewall", "operator": "eq", "version": "3.1.10"}], "bulletinFamily": "NVD", "cpe": ["cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.16", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.4.10.102", "cpe:/a:barracuda_networks:barracuda_spam_firewall:3.3.03.055", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.15.026", "cpe:/a:barracuda_networks:barracuda_spam_firewall:3.3.15.026", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.17", "cpe:/a:barracuda_networks:barracuda_spam_firewall:3.1.17", "cpe:/a:barracuda_networks:barracuda_spam_firewall:3.1.10", "cpe:/a:barracuda_networks:barracuda_spam_firewall:3.1.16", "cpe:/a:barracuda_networks:barracuda_spam_firewall:3.3.01.001", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.3", "cpe:/a:barracuda_networks:barracuda_spam_firewall:3.4.10.102", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.10", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.03.055", "cpe:/a:barracuda_networks:barracuda_spam_firewall:3.1.18", "cpe:/a:barracuda_networks:barracuda_spam_firewall:3.3.3", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.01.001", "cpe:/a:barracuda_networks:barracuda_spam_firewall:3.4", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.18", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.0.54", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.4", "cpe:/a:barracuda_networks:barracuda_spam_firewall:3.3.03.053", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.03.053", "cpe:/a:barracuda_networks:barracuda_spam_firewall:3.3.0.54"], "cpe23": ["cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.055:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.3:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.18:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4.10.102:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.17:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.16:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.01.001:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.15.026:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.10:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.053:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.0.54:*:*:*:*:*:*:*"], "cvelist": ["CVE-2008-2333"], "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true}, "cvss3": {}, "cwe": ["CWE-79"], "description": "Cross-site scripting (XSS) vulnerability in ldap_test.cgi in Barracuda Spam Firewall (BSF) before 3.5.11.025 allows remote attackers to inject arbitrary web script or HTML via the email parameter.", "edition": 1, "enchantments": {"dependencies": {"modified": "2019-05-29T18:09:26", "references": [{"idList": ["EDB-ID:31828"], "type": "exploitdb"}, {"idList": ["BARRACUDA_LDAP_TEST_XSS.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:DOC:19900"], "type": "securityvulns"}, {"idList": ["SSV:3326"], "type": "seebug"}, {"idList": ["PACKETSTORM:66610"], "type": "packetstorm"}], "rev": 2}, "score": {"modified": "2019-05-29T18:09:26", "rev": 2, "value": 4.7, "vector": "NONE"}}, "hash": "137fe574fc8e18feb98d519ed029a9e29e8cca5ce2b914edf2076ebdf1a87180", "hashmap": [{"hash": "0af864d82ea26e6cc833e82b2dd1755b", "key": "cpe23"}, {"hash": "25131d66a9f3961140b068f4b41aa42b", "key": "cvss2"}, {"hash": "6230f3c68a7b4f3b2eb5fd318f45dfd4", "key": "affectedSoftware"}, {"hash": "2e6fda6c85b450762054197c86ba2daf", "key": "href"}, {"hash": "3c526e4d53fba30e3b9a8dc804d847a8", "key": "title"}, {"hash": "1f256a64c7480dc03404fe07a1c98530", "key": "description"}, {"hash": "d7f0d7af5b27fd5d4d8b872f2cd3a812", "key": "cpe"}, {"hash": "8bad8101ba16de1ce3af71b343e704a6", "key": "references"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d7476ab4840bc2917a3d30a052f9b06f", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "841191d77ea61ce3e1504a1e2a2fc48f", "key": "modified"}, {"hash": "34e69e045b64924bccf865d56b6918a2", "key": "cwe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "5ade4bb4b1cdaa2832309cbc31515875", "key": "cvelist"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "f74a1c24e49a5ecb0eefb5e51d4caa14", "key": "cvss"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2333", "id": "CVE-2008-2333", "lastseen": "2019-05-29T18:09:26", "modified": "2018-10-11T20:40:00", "objectVersion": "1.3", "published": "2008-05-23T15:32:00", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/42594", "http://www.securityfocus.com/archive/1/492475/100/0/threaded", "http://www.irmplc.com/index.php/168-Advisory-027", "http://www.barracudanetworks.com/ns/support/tech_alert.php", "http://www.securitytracker.com/id?1020108", "http://www.securityfocus.com/bid/29340", "http://secunia.com/advisories/30362", "http://www.vupen.com/english/advisories/2008/1627/references"], "reporter": "cve@mitre.org", "title": "CVE-2008-2333", "type": "cve", "viewCount": 1}, "differentElements": ["cpe23", "cpe", "affectedSoftware"], "edition": 1, "lastseen": "2019-05-29T18:09:26"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.03.055"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.4.10.102"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.03.053"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.16"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.18"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.10"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.01.001"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.3"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.15.026"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.17"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.0.54"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.4"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "le", "version": "3.5.11.020"}], "bulletinFamily": "NVD", "cpe": ["cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.16", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.4.10.102", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.15.026", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.17", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.3", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.10", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.03.055", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.5.11.020", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.01.001", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.18", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.0.54", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.4", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.03.053"], "cpe23": ["cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.055:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.3:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.18:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4.10.102:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.17:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.16:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.01.001:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.15.026:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.5.11.020:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.10:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.053:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.0.54:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.15.026:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.01.001:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.053:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.17:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.3:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.055:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.5.11.020:*:*:*:*:*:*:*", "versionEndIncluding": "3.5.11.020", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4.10.102:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.0.54:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.10:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.18:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.16:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2008-2333"], "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true}, "cvss3": {}, "cwe": ["CWE-79"], "description": "Cross-site scripting (XSS) vulnerability in ldap_test.cgi in Barracuda Spam Firewall (BSF) before 3.5.11.025 allows remote attackers to inject arbitrary web script or HTML via the email parameter.", "edition": 5, "enchantments": {"dependencies": {"modified": "2020-12-09T19:28:22", "references": [{"idList": ["EDB-ID:31828"], "type": "exploitdb"}, {"idList": ["BARRACUDA_LDAP_TEST_XSS.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:DOC:19900"], "type": "securityvulns"}, {"idList": ["SSV:3326"], "type": "seebug"}, {"idList": ["PACKETSTORM:66610"], "type": "packetstorm"}], "rev": 2}, "score": {"modified": "2020-12-09T19:28:22", "rev": 2, "value": 4.7, "vector": "NONE"}}, "extraReferences": [], "hash": "6c96899e79197fdfd4592cab86dbbab088c7f2b8fa229ed327190f856d575ee6", "hashmap": [{"hash": "25131d66a9f3961140b068f4b41aa42b", "key": "cvss2"}, {"hash": "2e6fda6c85b450762054197c86ba2daf", "key": "href"}, {"hash": "3c526e4d53fba30e3b9a8dc804d847a8", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "1f256a64c7480dc03404fe07a1c98530", "key": "description"}, {"hash": "8bad8101ba16de1ce3af71b343e704a6", "key": "references"}, {"hash": "e303168210dc90361d915f04d3f344b7", "key": "cpe"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d7476ab4840bc2917a3d30a052f9b06f", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "841191d77ea61ce3e1504a1e2a2fc48f", "key": "modified"}, {"hash": "6fb5259f675e607b25c8992c23d2efab", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "extraReferences"}, {"hash": "34e69e045b64924bccf865d56b6918a2", "key": "cwe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "5ade4bb4b1cdaa2832309cbc31515875", "key": "cvelist"}, {"hash": "20814ee681f0ebbd408494f3b25f2843", "key": "cpeConfiguration"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "f74a1c24e49a5ecb0eefb5e51d4caa14", "key": "cvss"}, {"hash": "31332760ebdb67b6f0f4ee434cf1b4ef", "key": "cpe23"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2333", "id": "CVE-2008-2333", "lastseen": "2020-12-09T19:28:22", "modified": "2018-10-11T20:40:00", "objectVersion": "1.3", "published": "2008-05-23T15:32:00", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/42594", "http://www.securityfocus.com/archive/1/492475/100/0/threaded", "http://www.irmplc.com/index.php/168-Advisory-027", "http://www.barracudanetworks.com/ns/support/tech_alert.php", "http://www.securitytracker.com/id?1020108", "http://www.securityfocus.com/bid/29340", "http://secunia.com/advisories/30362", "http://www.vupen.com/english/advisories/2008/1627/references"], "reporter": "cve@mitre.org", "title": "CVE-2008-2333", "type": "cve", "viewCount": 2}, "differentElements": ["extraReferences"], "edition": 5, "lastseen": "2020-12-09T19:28:22"}], "edition": 7, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "6fb5259f675e607b25c8992c23d2efab"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "e303168210dc90361d915f04d3f344b7"}, {"key": "cpe23", "hash": "31332760ebdb67b6f0f4ee434cf1b4ef"}, {"key": "cpeConfiguration", "hash": "c18b47a786bb4b58dbc31f4fbe094cc4"}, {"key": "cvelist", "hash": "5ade4bb4b1cdaa2832309cbc31515875"}, {"key": "cvss", "hash": "f74a1c24e49a5ecb0eefb5e51d4caa14"}, {"key": "cvss2", "hash": "25131d66a9f3961140b068f4b41aa42b"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "34e69e045b64924bccf865d56b6918a2"}, {"key": "description", "hash": "1f256a64c7480dc03404fe07a1c98530"}, {"key": "extraReferences", "hash": "5b418d6202daa487e888c8937fb1406c"}, {"key": "href", "hash": "2e6fda6c85b450762054197c86ba2daf"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "841191d77ea61ce3e1504a1e2a2fc48f"}, {"key": "published", "hash": "d7476ab4840bc2917a3d30a052f9b06f"}, {"key": "references", "hash": "8bad8101ba16de1ce3af71b343e704a6"}, {"key": "reporter", "hash": "444c2b4dda4a55437faa8bef1a141e84"}, {"key": "title", "hash": "3c526e4d53fba30e3b9a8dc804d847a8"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "f2055a002e3bca48e5d7ea33305f830bd89234a9c724a6f88d6a94e30b1ef2f7", "viewCount": 12, "enchantments": {"dependencies": {"references": [{"type": "exploitdb", "idList": ["EDB-ID:31828"]}, {"type": "nessus", "idList": ["4518.PRM", "BARRACUDA_LDAP_TEST_XSS.NASL"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:19900"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:66610"]}, {"type": "seebug", "idList": ["SSV:3326"]}], "modified": "2021-04-21T20:41:34", "rev": 2}, "score": {"value": 4.7, "vector": "NONE", "modified": "2021-04-21T20:41:34", "rev": 2}}, "objectVersion": "1.5", "cpe": ["cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.16", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.4.10.102", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.15.026", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.17", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.3", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.10", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.03.055", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.5.11.020", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.01.001", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.1.18", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.0.54", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.4", "cpe:/h:barracuda_networks:barracuda_spam_firewall:3.3.03.053"], "affectedSoftware": [{"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.03.055"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.4.10.102"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.03.053"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.16"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.18"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.10"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.01.001"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.3"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.15.026"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.1.17"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.3.0.54"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "eq", "version": "3.4"}, {"cpeName": "barracuda_networks:barracuda_spam_firewall", "name": "barracuda networks barracuda spam firewall", "operator": "le", "version": "3.5.11.020"}], "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true}, "cvss3": {}, "cpe23": ["cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.055:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.3:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.18:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4.10.102:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.17:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.16:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.01.001:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.15.026:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.5.11.020:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.10:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.053:*:*:*:*:*:*:*", "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.0.54:*:*:*:*:*:*:*"], "cwe": ["CWE-79"], "scheme": null, "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.15.026:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.01.001:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.5.11.020:*:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "3.5.11.020", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.18:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.4.10.102:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.0.54:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.053:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.055:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "http://www.barracudanetworks.com/ns/support/tech_alert.php", "refsource": "CONFIRM", "tags": [], "url": "http://www.barracudanetworks.com/ns/support/tech_alert.php"}, {"name": "barracuda-email-xss(42594)", "refsource": "XF", "tags": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42594"}, {"name": "29340", "refsource": "BID", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/29340"}, {"name": "http://www.irmplc.com/index.php/168-Advisory-027", "refsource": "MISC", "tags": [], "url": "http://www.irmplc.com/index.php/168-Advisory-027"}, {"name": "30362", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/30362"}, {"name": "1020108", "refsource": "SECTRACK", "tags": [], "url": "http://www.securitytracker.com/id?1020108"}, {"name": "ADV-2008-1627", "refsource": "VUPEN", "tags": [], "url": "http://www.vupen.com/english/advisories/2008/1627/references"}, {"name": "20080522 IRM Security Advisory : Barracuda Networks Spam Firewall Cross-Site Scripting Vulnerability", "refsource": "BUGTRAQ", "tags": [], "url": "http://www.securityfocus.com/archive/1/492475/100/0/threaded"}], "immutableFields": []}], "nessus": [{"id": "4518.PRM", "hash": "7808ba5d9e8cb88cb0d9d39fe379a85c", "type": "nessus", "bulletinFamily": "scanner", "title": "Barracuda Spam Firewall ldap_test.cgi Cross-Site Scripting Vulnerability", "description": "According to its firmware version, the remote Barracuda Spam Firewall device fails to filter input to the 'email' parameter of the '/cgi-bin/ldap_test.cgi' script before using it to generate dynamic content. An unauthenticated remote attacker may be able to leverage this issue to inject arbitrary HTML or script code into a user's browser to be executed within the security context of the affected site.", "published": "2004-08-18T00:00:00", "modified": "2019-03-06T00:00:00", "cvss": {"score": 5.8, "vector": "CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N"}, "cvss2": {}, "cvss3": {"score": 4.8, "vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"}, "href": "https://www.tenable.com/plugins/nnm/4518", "reporter": "Tenable", "references": ["http://archives.neohapsis.com/archives/fulldisclosure/2008-05/0566.html", "http://www.barracudanetworks.com/ns/support/tech_alert.php", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2333"], "cvelist": ["CVE-2008-2333"], "immutableFields": [], "lastseen": "2021-08-19T13:19:23", "history": [{"bulletin": {"id": "4518.PRM", "hash": "f806f0b7283b45764a21af25a315e9d3", "type": "nessus", "bulletinFamily": "scanner", "title": "Barracuda Spam Firewall ldap_test.cgi Cross-Site Scripting Vulnerability", "description": "According to its firmware version, the remote Barracuda Spam Firewall device fails to filter input to the 'email' parameter of the '/cgi-bin/ldap_test.cgi' script before using it to generate dynamic content. An unauthenticated remote attacker may be able to leverage this issue to inject arbitrary HTML or script code into a user's browser to be executed within the security context of the affected site.", "published": "2004-08-18T00:00:00", "modified": "2019-03-06T00:00:00", "cvss": {"score": 5.8, "vector": "CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N"}, "cvss2": {}, "cvss3": {"score": 4.8, "vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"}, "href": "https://www.tenable.com/plugins/nnm/4518", "reporter": "Tenable", "references": ["http://www.barracudanetworks.com/ns/support/tech_alert.php", "http://archives.neohapsis.com/archives/fulldisclosure/2008-05/0566.html", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2333"], "cvelist": ["CVE-2008-2333"], "immutableFields": [], "lastseen": "2021-08-12T13:30:01", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2008-2333"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:66610"]}, {"type": "seebug", "idList": ["SSV:3326"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:19900"]}, {"type": "exploitdb", "idList": ["EDB-ID:31828"]}, {"type": "nessus", "idList": ["BARRACUDA_LDAP_TEST_XSS.NASL"]}], "modified": "2021-08-12T13:30:01", "rev": 2}, "score": {"value": 6.5, "vector": "NONE", "modified": "2021-08-12T13:30:01", "rev": 2}}, "objectVersion": "1.6", "pluginID": "4518", "sourceData": "Binary data 4518.prm", "naslFamily": "Web Servers", "cpe": ["cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:*:*:*:*:*:*:*:*"], "solution": "Either configure the device to limit access to the web management application by IP address or update to firmware release 3.5.11.025 or later.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-12T13:30:01", "differentElements": ["nessusSeverity"], "edition": 1}], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2008-2333"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:66610"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:19900"]}, {"type": "exploitdb", "idList": ["EDB-ID:31828"]}, {"type": "seebug", "idList": ["SSV:3326"]}, {"type": "nessus", "idList": ["BARRACUDA_LDAP_TEST_XSS.NASL"]}], "modified": "2021-08-19T13:19:23", "rev": 2}, "score": {"value": 6.5, "vector": "NONE", "modified": "2021-08-19T13:19:23", "rev": 2}}, "objectVersion": "1.6", "pluginID": "4518", "sourceData": "Binary data 4518.prm", "naslFamily": "Web Servers", "cpe": ["cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:*:*:*:*:*:*:*:*"], "solution": "Either configure the device to limit access to the web management application by IP address or update to firmware release 3.5.11.025 or later.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "BARRACUDA_LDAP_TEST_XSS.NASL", "hash": "88ff65e39931be36ae1badc9c8db811a", "type": "nessus", "bulletinFamily": "scanner", "title": "Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS", "description": "According to its firmware version, the remote Barracuda Spam Firewall device fails to filter input to the 'email' parameter of the '/cgi-bin/ldap_test.cgi' script before using it to generate dynamic content. An unauthenticated, remote attacker may be able to leverage this issue to inject arbitrary HTML or script code into a user's browser to be executed within the security context of the affected site.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported firmware version.", "published": "2008-05-23T00:00:00", "modified": "2021-01-19T00:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/32434", "reporter": "This script is Copyright (C) 2008-2021 Tenable Network Security, Inc.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2333", "https://seclists.org/fulldisclosure/2008/May/564", "https://www.barracuda.com/support/techalerts"], "cvelist": ["CVE-2008-2333"], "immutableFields": [], "lastseen": "2021-10-16T02:53:07", "history": [{"bulletin": {"id": "BARRACUDA_LDAP_TEST_XSS.NASL", "hash": "f6d9ed132c7ae3ba297f324ac66f3cddd3b4308ae8135534794eb9b33b32ed7a", "type": "nessus", "bulletinFamily": "exploit", "title": "Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS", "description": "According to its firmware version, the remote Barracuda Spam Firewall device fails to filter input to the 'email' parameter of the '/cgi-bin/ldap_test.cgi' script before using it to generate dynamic content. An unauthenticated, remote attacker may be able to leverage this issue to inject arbitrary HTML or script code into a user's browser to be executed within the security context of the affected site.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported firmware version.", "published": "2008-05-23T00:00:00", "modified": "2016-05-04T00:00:00", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=32434", "reporter": "Tenable", "references": ["http://www.barracudanetworks.com/ns/support/tech_alert.php", "http://archives.neohapsis.com/archives/fulldisclosure/2008-05/0566.html"], "cvelist": ["CVE-2008-2333"], "immutableFields": [], "lastseen": "2016-09-26T17:26:07", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "pluginID": "32434", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(32434);\n script_version(\"$Revision: 1.14 $\");\n script_cvs_date(\"$Date: 2016/05/04 14:21:29 $\");\n\n script_cve_id(\"CVE-2008-2333\");\n script_bugtraq_id(29340);\n script_osvdb_id(45611);\n script_xref(name:\"Secunia\", value:\"30362\");\n\n script_name(english:\"Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS\");\n script_summary(english:\"Checks firmware version\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a CGI script that is affected by a\ncross-site scripting vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its firmware version, the remote Barracuda Spam Firewall\ndevice fails to filter input to the 'email' parameter of the\n'/cgi-bin/ldap_test.cgi' script before using it to generate dynamic\ncontent. An unauthenticated, remote attacker may be able to leverage\nthis issue to inject arbitrary HTML or script code into a user's\nbrowser to be executed within the security context of the affected\nsite.\n\nNote that Nessus has not tested for this issue but has instead\nrelied only on the application's self-reported firmware version.\");\n script_set_attribute(attribute:\"see_also\", value:\"http://archives.neohapsis.com/archives/fulldisclosure/2008-05/0566.html\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.barracudanetworks.com/ns/support/tech_alert.php\");\n script_set_attribute(attribute:\"solution\", value:\n\"Either configure the device to limit access to the web management\napplication by IP address or update to firmware release 3.5.11.025 or\nlater.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_cwe_id(79);\n\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2008/05/23\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:barracuda_networks:barracuda_spam_firewall\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses : XSS\");\n\n script_copyright(english:\"This script is Copyright (C) 2008-2016 Tenable Network Security, Inc.\");\n\n script_dependencies(\"barracuda_detect.nasl\");\n script_require_ports(\"Services/www\", 8000);\n script_require_keys(\"www/barracuda_spamfw\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"webapp_func.inc\");\n\nport = get_http_port(default:8000, embedded:TRUE);\nproduct = \"Barracuda Spam Firewall\";\n\n# Identify and check the firmware version.\ninstall = get_install_from_kb(\n appname : \"barracuda_spamfw\",\n port : port,\n exit_on_fail:TRUE\n);\ndir = install[\"dir\"];\nfirmware = install[\"ver\"];\n\nif (firmware == UNKNOWN_VER)\n audit(AUDIT_UNKNOWN_WEB_SERVER_VER, product, port);\n\nfix = \"3.5.11.025\";\nif (ver_compare(ver:firmware, fix:fix, strict:FALSE) < 0)\n{\n set_kb_item(name: 'www/'+port+'/XSS', value: TRUE);\n if (report_verbosity)\n {\n report =\n '\\n Product : ' + product +\n '\\n URL : ' + build_url(qs:dir, port:port) +\n '\\n Installed Version : ' + firmware +\n '\\n Fixed Version : ' + fix + '\\n';\n security_warning(port:port, extra:report);\n }\n else security_warning(port);\n exit(0);\n}\nelse audit(AUDIT_LISTEN_NOT_VULN, product, port, firmware);\n", "naslFamily": "CGI abuses : XSS", "cpe": [], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2016-09-26T17:26:07", "differentElements": ["bulletinFamily", "cpe", "cvss", "description", "href", "modified", "references", "reporter", "sourceData"], "edition": 1}, {"bulletin": {"id": "BARRACUDA_LDAP_TEST_XSS.NASL", "hash": "8fdf5880279de807baa702dce75ba589292384e73f6eedfe76fc2d391fea536c", "type": "nessus", "bulletinFamily": "scanner", "title": "Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS", "description": "According to its firmware version, the remote Barracuda Spam Firewall\ndevice fails to filter input to the ", "published": "2008-05-23T00:00:00", "modified": "2020-02-02T00:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/32434", "reporter": "This script is Copyright (C) 2008-2018 Tenable Network Security, Inc.", "references": ["https://www.barracuda.com/support/techalerts", "https://seclists.org/fulldisclosure/2008/May/564"], "cvelist": ["CVE-2008-2333"], "immutableFields": [], "lastseen": "2020-02-01T06:43:43", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"modified": "2020-02-01T06:43:43", "references": [{"idList": ["EDB-ID:31828"], "type": "exploitdb"}, {"idList": ["CVE-2008-2333"], "type": "cve"}, {"idList": ["SECURITYVULNS:DOC:19900"], "type": "securityvulns"}, {"idList": ["SSV:3326"], "type": "seebug"}, {"idList": ["PACKETSTORM:66610"], "type": "packetstorm"}]}, "score": {"modified": "2020-02-01T06:43:43", "value": 5.6, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "32434", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(32434);\n script_version(\"1.17\");\n script_cvs_date(\"Date: 2018/11/15 20:50:19\");\n\n script_cve_id(\"CVE-2008-2333\");\n script_bugtraq_id(29340);\n script_xref(name:\"Secunia\", value:\"30362\");\n\n script_name(english:\"Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS\");\n script_summary(english:\"Checks firmware version\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a CGI script that is affected by a\ncross-site scripting vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its firmware version, the remote Barracuda Spam Firewall\ndevice fails to filter input to the 'email' parameter of the\n'/cgi-bin/ldap_test.cgi' script before using it to generate dynamic\ncontent. An unauthenticated, remote attacker may be able to leverage\nthis issue to inject arbitrary HTML or script code into a user's\nbrowser to be executed within the security context of the affected\nsite.\n\nNote that Nessus has not tested for this issue but has instead\nrelied only on the application's self-reported firmware version.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://seclists.org/fulldisclosure/2008/May/564\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.barracuda.com/support/techalerts\");\n script_set_attribute(attribute:\"solution\", value:\n\"Either configure the device to limit access to the web management\napplication by IP address or update to firmware release 3.5.11.025 or\nlater.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(79);\n\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2008/05/23\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:barracuda_networks:barracuda_spam_firewall\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses : XSS\");\n\n script_copyright(english:\"This script is Copyright (C) 2008-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"barracuda_detect.nasl\");\n script_require_ports(\"Services/www\", 8000);\n script_require_keys(\"www/barracuda_spamfw\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"webapp_func.inc\");\n\nport = get_http_port(default:8000, embedded:TRUE);\nproduct = \"Barracuda Spam Firewall\";\n\n# Identify and check the firmware version.\ninstall = get_install_from_kb(\n appname : \"barracuda_spamfw\",\n port : port,\n exit_on_fail:TRUE\n);\ndir = install[\"dir\"];\nfirmware = install[\"ver\"];\n\nif (firmware == UNKNOWN_VER)\n audit(AUDIT_UNKNOWN_WEB_SERVER_VER, product, port);\n\nfix = \"3.5.11.025\";\nif (ver_compare(ver:firmware, fix:fix, strict:FALSE) < 0)\n{\n set_kb_item(name: 'www/'+port+'/XSS', value: TRUE);\n if (report_verbosity)\n {\n report =\n '\\n Product : ' + product +\n '\\n URL : ' + build_url(qs:dir, port:port) +\n '\\n Installed Version : ' + firmware +\n '\\n Fixed Version : ' + fix + '\\n';\n security_warning(port:port, extra:report);\n }\n else security_warning(port);\n exit(0);\n}\nelse audit(AUDIT_LISTEN_NOT_VULN, product, port, firmware);\n", "naslFamily": "CGI abuses : XSS", "cpe": ["cpe:/h:barracuda_networks:barracuda_spam_firewall"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-02-01T06:43:43", "differentElements": ["modified"], "edition": 2}, {"bulletin": {"id": "BARRACUDA_LDAP_TEST_XSS.NASL", "hash": "98e50e289f704ec323f94427aaa638c7c34d7461529b2cc3d4adc3f989d4ab4d", "type": "nessus", "bulletinFamily": "scanner", "title": "Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS", "description": "According to its firmware version, the remote Barracuda Spam Firewall\ndevice fails to filter input to the ", "published": "2008-05-23T00:00:00", "modified": "2020-07-02T00:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/32434", "reporter": "This script is Copyright (C) 2008-2018 Tenable Network Security, Inc.", "references": ["https://www.barracuda.com/support/techalerts", "https://seclists.org/fulldisclosure/2008/May/564"], "cvelist": ["CVE-2008-2333"], "immutableFields": [], "lastseen": "2020-07-01T01:00:35", "history": [], "viewCount": 4, "enchantments": {"dependencies": {"modified": "2020-07-01T01:00:35", "references": [{"idList": ["EDB-ID:31828"], "type": "exploitdb"}, {"idList": ["CVE-2008-2333"], "type": "cve"}, {"idList": ["SECURITYVULNS:DOC:19900"], "type": "securityvulns"}, {"idList": ["SSV:3326"], "type": "seebug"}, {"idList": ["PACKETSTORM:66610"], "type": "packetstorm"}], "rev": 2}, "score": {"modified": "2020-07-01T01:00:35", "rev": 2, "value": 5.6, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "32434", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(32434);\n script_version(\"1.17\");\n script_cvs_date(\"Date: 2018/11/15 20:50:19\");\n\n script_cve_id(\"CVE-2008-2333\");\n script_bugtraq_id(29340);\n script_xref(name:\"Secunia\", value:\"30362\");\n\n script_name(english:\"Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS\");\n script_summary(english:\"Checks firmware version\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a CGI script that is affected by a\ncross-site scripting vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its firmware version, the remote Barracuda Spam Firewall\ndevice fails to filter input to the 'email' parameter of the\n'/cgi-bin/ldap_test.cgi' script before using it to generate dynamic\ncontent. An unauthenticated, remote attacker may be able to leverage\nthis issue to inject arbitrary HTML or script code into a user's\nbrowser to be executed within the security context of the affected\nsite.\n\nNote that Nessus has not tested for this issue but has instead\nrelied only on the application's self-reported firmware version.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://seclists.org/fulldisclosure/2008/May/564\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.barracuda.com/support/techalerts\");\n script_set_attribute(attribute:\"solution\", value:\n\"Either configure the device to limit access to the web management\napplication by IP address or update to firmware release 3.5.11.025 or\nlater.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(79);\n\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2008/05/23\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:barracuda_networks:barracuda_spam_firewall\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses : XSS\");\n\n script_copyright(english:\"This script is Copyright (C) 2008-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"barracuda_detect.nasl\");\n script_require_ports(\"Services/www\", 8000);\n script_require_keys(\"www/barracuda_spamfw\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"webapp_func.inc\");\n\nport = get_http_port(default:8000, embedded:TRUE);\nproduct = \"Barracuda Spam Firewall\";\n\n# Identify and check the firmware version.\ninstall = get_install_from_kb(\n appname : \"barracuda_spamfw\",\n port : port,\n exit_on_fail:TRUE\n);\ndir = install[\"dir\"];\nfirmware = install[\"ver\"];\n\nif (firmware == UNKNOWN_VER)\n audit(AUDIT_UNKNOWN_WEB_SERVER_VER, product, port);\n\nfix = \"3.5.11.025\";\nif (ver_compare(ver:firmware, fix:fix, strict:FALSE) < 0)\n{\n set_kb_item(name: 'www/'+port+'/XSS', value: TRUE);\n if (report_verbosity)\n {\n report =\n '\\n Product : ' + product +\n '\\n URL : ' + build_url(qs:dir, port:port) +\n '\\n Installed Version : ' + firmware +\n '\\n Fixed Version : ' + fix + '\\n';\n security_warning(port:port, extra:report);\n }\n else security_warning(port);\n exit(0);\n}\nelse audit(AUDIT_LISTEN_NOT_VULN, product, port, firmware);\n", "naslFamily": "CGI abuses : XSS", "cpe": ["cpe:/h:barracuda_networks:barracuda_spam_firewall"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-07-01T01:00:35", "differentElements": ["description", "modified"], "edition": 3}, {"bulletin": {"id": "BARRACUDA_LDAP_TEST_XSS.NASL", "hash": "726c8f504ea0493ab2b91a3132f2e7b3eddff8fc41697f108f556028bcd233ba", "type": "nessus", "bulletinFamily": "scanner", "title": "Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS", "description": "According to its firmware version, the remote Barracuda Spam Firewall\ndevice fails to filter input to the 'email' parameter of the\n'/cgi-bin/ldap_test.cgi' script before using it to generate dynamic\ncontent. An unauthenticated, remote attacker may be able to leverage\nthis issue to inject arbitrary HTML or script code into a user's\nbrowser to be executed within the security context of the affected\nsite.\n\nNote that Nessus has not tested for this issue but has instead\nrelied only on the application's self-reported firmware version.", "published": "2008-05-23T00:00:00", "modified": "2020-09-02T00:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/32434", "reporter": "This script is Copyright (C) 2008-2018 Tenable Network Security, Inc.", "references": ["https://www.barracuda.com/support/techalerts", "https://seclists.org/fulldisclosure/2008/May/564"], "cvelist": ["CVE-2008-2333"], "immutableFields": [], "lastseen": "2020-09-14T13:16:33", "history": [], "viewCount": 4, "enchantments": {"dependencies": {"modified": "2020-09-14T13:16:33", "references": [{"idList": ["EDB-ID:31828"], "type": "exploitdb"}, {"idList": ["CVE-2008-2333"], "type": "cve"}, {"idList": ["SECURITYVULNS:DOC:19900"], "type": "securityvulns"}, {"idList": ["SSV:3326"], "type": "seebug"}, {"idList": ["PACKETSTORM:66610"], "type": "packetstorm"}], "rev": 2}, "score": {"modified": "2020-09-14T13:16:33", "rev": 2, "value": 4.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "32434", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(32434);\n script_version(\"1.17\");\n script_cvs_date(\"Date: 2018/11/15 20:50:19\");\n\n script_cve_id(\"CVE-2008-2333\");\n script_bugtraq_id(29340);\n script_xref(name:\"Secunia\", value:\"30362\");\n\n script_name(english:\"Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS\");\n script_summary(english:\"Checks firmware version\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a CGI script that is affected by a\ncross-site scripting vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its firmware version, the remote Barracuda Spam Firewall\ndevice fails to filter input to the 'email' parameter of the\n'/cgi-bin/ldap_test.cgi' script before using it to generate dynamic\ncontent. An unauthenticated, remote attacker may be able to leverage\nthis issue to inject arbitrary HTML or script code into a user's\nbrowser to be executed within the security context of the affected\nsite.\n\nNote that Nessus has not tested for this issue but has instead\nrelied only on the application's self-reported firmware version.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://seclists.org/fulldisclosure/2008/May/564\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.barracuda.com/support/techalerts\");\n script_set_attribute(attribute:\"solution\", value:\n\"Either configure the device to limit access to the web management\napplication by IP address or update to firmware release 3.5.11.025 or\nlater.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(79);\n\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2008/05/23\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:barracuda_networks:barracuda_spam_firewall\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses : XSS\");\n\n script_copyright(english:\"This script is Copyright (C) 2008-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"barracuda_detect.nasl\");\n script_require_ports(\"Services/www\", 8000);\n script_require_keys(\"www/barracuda_spamfw\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"webapp_func.inc\");\n\nport = get_http_port(default:8000, embedded:TRUE);\nproduct = \"Barracuda Spam Firewall\";\n\n# Identify and check the firmware version.\ninstall = get_install_from_kb(\n appname : \"barracuda_spamfw\",\n port : port,\n exit_on_fail:TRUE\n);\ndir = install[\"dir\"];\nfirmware = install[\"ver\"];\n\nif (firmware == UNKNOWN_VER)\n audit(AUDIT_UNKNOWN_WEB_SERVER_VER, product, port);\n\nfix = \"3.5.11.025\";\nif (ver_compare(ver:firmware, fix:fix, strict:FALSE) < 0)\n{\n set_kb_item(name: 'www/'+port+'/XSS', value: TRUE);\n if (report_verbosity)\n {\n report =\n '\\n Product : ' + product +\n '\\n URL : ' + build_url(qs:dir, port:port) +\n '\\n Installed Version : ' + firmware +\n '\\n Fixed Version : ' + fix + '\\n';\n security_warning(port:port, extra:report);\n }\n else security_warning(port);\n exit(0);\n}\nelse audit(AUDIT_LISTEN_NOT_VULN, product, port, firmware);\n", "naslFamily": "CGI abuses : XSS", "cpe": ["cpe:/h:barracuda_networks:barracuda_spam_firewall"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-09-14T13:16:33", "differentElements": ["modified", "reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "BARRACUDA_LDAP_TEST_XSS.NASL", "hash": "4f6b69a245464c79dbb89437c0cf05519987e683a9d0589d85a813c2b9a6d6cc", "type": "nessus", "bulletinFamily": "scanner", "title": "Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS", "description": "According to its firmware version, the remote Barracuda Spam Firewall\ndevice fails to filter input to the 'email' parameter of the\n'/cgi-bin/ldap_test.cgi' script before using it to generate dynamic\ncontent. An unauthenticated, remote attacker may be able to leverage\nthis issue to inject arbitrary HTML or script code into a user's\nbrowser to be executed within the security context of the affected\nsite.\n\nNote that Nessus has not tested for this issue but has instead\nrelied only on the application's self-reported firmware version.", "published": "2008-05-23T00:00:00", "modified": "2008-05-23T00:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/32434", "reporter": "This script is Copyright (C) 2008-2021 Tenable Network Security, Inc.", "references": ["https://www.barracuda.com/support/techalerts", "https://seclists.org/fulldisclosure/2008/May/564"], "cvelist": ["CVE-2008-2333"], "immutableFields": [], "lastseen": "2021-01-20T09:25:09", "history": [], "viewCount": 5, "enchantments": {"dependencies": {"modified": "2021-01-20T09:25:09", "references": [{"idList": ["EDB-ID:31828"], "type": "exploitdb"}, {"idList": ["CVE-2008-2333"], "type": "cve"}, {"idList": ["SECURITYVULNS:DOC:19900"], "type": "securityvulns"}, {"idList": ["SSV:3326"], "type": "seebug"}, {"idList": ["PACKETSTORM:66610"], "type": "packetstorm"}], "rev": 2}, "score": {"modified": "2021-01-20T09:25:09", "rev": 2, "value": 4.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "32434", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(32434);\n script_version(\"1.18\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/19\");\n\n script_cve_id(\"CVE-2008-2333\");\n script_bugtraq_id(29340);\n script_xref(name:\"Secunia\", value:\"30362\");\n\n script_name(english:\"Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS\");\n script_summary(english:\"Checks firmware version\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a CGI script that is affected by a\ncross-site scripting vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its firmware version, the remote Barracuda Spam Firewall\ndevice fails to filter input to the 'email' parameter of the\n'/cgi-bin/ldap_test.cgi' script before using it to generate dynamic\ncontent. An unauthenticated, remote attacker may be able to leverage\nthis issue to inject arbitrary HTML or script code into a user's\nbrowser to be executed within the security context of the affected\nsite.\n\nNote that Nessus has not tested for this issue but has instead\nrelied only on the application's self-reported firmware version.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://seclists.org/fulldisclosure/2008/May/564\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.barracuda.com/support/techalerts\");\n script_set_attribute(attribute:\"solution\", value:\n\"Either configure the device to limit access to the web management\napplication by IP address or update to firmware release 3.5.11.025 or\nlater.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(79);\n\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2008/05/23\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:barracuda_networks:barracuda_spam_firewall\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses : XSS\");\n\n script_copyright(english:\"This script is Copyright (C) 2008-2021 Tenable Network Security, Inc.\");\n\n script_dependencies(\"barracuda_detect.nasl\");\n script_require_ports(\"Services/www\", 8000);\n script_require_keys(\"www/barracuda_spamfw\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"webapp_func.inc\");\n\nport = get_http_port(default:8000, embedded:TRUE);\nproduct = \"Barracuda Spam Firewall\";\n\n# Identify and check the firmware version.\ninstall = get_install_from_kb(\n appname : \"barracuda_spamfw\",\n port : port,\n exit_on_fail:TRUE\n);\ndir = install[\"dir\"];\nfirmware = install[\"ver\"];\n\nif (firmware == UNKNOWN_VER)\n audit(AUDIT_UNKNOWN_WEB_SERVER_VER, product, port);\n\nfix = \"3.5.11.025\";\nif (ver_compare(ver:firmware, fix:fix, strict:FALSE) < 0)\n{\n set_kb_item(name: 'www/'+port+'/XSS', value: TRUE);\n if (report_verbosity)\n {\n report =\n '\\n Product : ' + product +\n '\\n URL : ' + build_url(qs:dir, port:port) +\n '\\n Installed Version : ' + firmware +\n '\\n Fixed Version : ' + fix + '\\n';\n security_warning(port:port, extra:report);\n }\n else security_warning(port);\n exit(0);\n}\nelse audit(AUDIT_LISTEN_NOT_VULN, product, port, firmware);\n", "naslFamily": "CGI abuses : XSS", "cpe": ["cpe:/h:barracuda_networks:barracuda_spam_firewall"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-20T09:25:09", "differentElements": ["cvss2"], "edition": 5}, {"bulletin": {"id": "BARRACUDA_LDAP_TEST_XSS.NASL", "hash": "3af6f4d4bed1255962db465c5bd6d696", "type": "nessus", "bulletinFamily": "scanner", "title": "Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS", "description": "According to its firmware version, the remote Barracuda Spam Firewall\ndevice fails to filter input to the 'email' parameter of the\n'/cgi-bin/ldap_test.cgi' script before using it to generate dynamic\ncontent. An unauthenticated, remote attacker may be able to leverage\nthis issue to inject arbitrary HTML or script code into a user's\nbrowser to be executed within the security context of the affected\nsite.\n\nNote that Nessus has not tested for this issue but has instead\nrelied only on the application's self-reported firmware version.", "published": "2008-05-23T00:00:00", "modified": "2008-05-23T00:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/32434", "reporter": "This script is Copyright (C) 2008-2021 Tenable Network Security, Inc.", "references": ["https://www.barracuda.com/support/techalerts", "https://seclists.org/fulldisclosure/2008/May/564"], "cvelist": ["CVE-2008-2333"], "immutableFields": [], "lastseen": "2021-07-28T22:36:01", "history": [], "viewCount": 5, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2008-2333"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:66610"]}, {"type": "seebug", "idList": ["SSV:3326"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:19900"]}, {"type": "exploitdb", "idList": ["EDB-ID:31828"]}], "modified": "2021-07-28T22:36:01", "rev": 2}, "score": {"value": 4.9, "vector": "NONE", "modified": "2021-07-28T22:36:01", "rev": 2}}, "objectVersion": "1.6", "pluginID": "32434", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(32434);\n script_version(\"1.18\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/19\");\n\n script_cve_id(\"CVE-2008-2333\");\n script_bugtraq_id(29340);\n script_xref(name:\"Secunia\", value:\"30362\");\n\n script_name(english:\"Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS\");\n script_summary(english:\"Checks firmware version\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a CGI script that is affected by a\ncross-site scripting vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its firmware version, the remote Barracuda Spam Firewall\ndevice fails to filter input to the 'email' parameter of the\n'/cgi-bin/ldap_test.cgi' script before using it to generate dynamic\ncontent. An unauthenticated, remote attacker may be able to leverage\nthis issue to inject arbitrary HTML or script code into a user's\nbrowser to be executed within the security context of the affected\nsite.\n\nNote that Nessus has not tested for this issue but has instead\nrelied only on the application's self-reported firmware version.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://seclists.org/fulldisclosure/2008/May/564\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.barracuda.com/support/techalerts\");\n script_set_attribute(attribute:\"solution\", value:\n\"Either configure the device to limit access to the web management\napplication by IP address or update to firmware release 3.5.11.025 or\nlater.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(79);\n\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2008/05/23\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:barracuda_networks:barracuda_spam_firewall\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses : XSS\");\n\n script_copyright(english:\"This script is Copyright (C) 2008-2021 Tenable Network Security, Inc.\");\n\n script_dependencies(\"barracuda_detect.nasl\");\n script_require_ports(\"Services/www\", 8000);\n script_require_keys(\"www/barracuda_spamfw\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"webapp_func.inc\");\n\nport = get_http_port(default:8000, embedded:TRUE);\nproduct = \"Barracuda Spam Firewall\";\n\n# Identify and check the firmware version.\ninstall = get_install_from_kb(\n appname : \"barracuda_spamfw\",\n port : port,\n exit_on_fail:TRUE\n);\ndir = install[\"dir\"];\nfirmware = install[\"ver\"];\n\nif (firmware == UNKNOWN_VER)\n audit(AUDIT_UNKNOWN_WEB_SERVER_VER, product, port);\n\nfix = \"3.5.11.025\";\nif (ver_compare(ver:firmware, fix:fix, strict:FALSE) < 0)\n{\n set_kb_item(name: 'www/'+port+'/XSS', value: TRUE);\n if (report_verbosity)\n {\n report =\n '\\n Product : ' + product +\n '\\n URL : ' + build_url(qs:dir, port:port) +\n '\\n Installed Version : ' + firmware +\n '\\n Fixed Version : ' + fix + '\\n';\n security_warning(port:port, extra:report);\n }\n else security_warning(port);\n exit(0);\n}\nelse audit(AUDIT_LISTEN_NOT_VULN, product, port, firmware);\n", "naslFamily": "CGI abuses : XSS", "cpe": ["cpe:/h:barracuda_networks:barracuda_spam_firewall"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-28T22:36:01", "differentElements": ["cvss2", "cvss3", "description", "exploitEase", "modified", "references", "solution", "vpr"], "edition": 6}, {"bulletin": {"id": "BARRACUDA_LDAP_TEST_XSS.NASL", "hash": "7eb6b273b2ad8736bb4c6b9e3d4fe975", "type": "nessus", "bulletinFamily": "scanner", "title": "Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS", "description": "According to its firmware version, the remote Barracuda Spam Firewall device fails to filter input to the 'email' parameter of the '/cgi-bin/ldap_test.cgi' script before using it to generate dynamic content. An unauthenticated, remote attacker may be able to leverage this issue to inject arbitrary HTML or script code into a user's browser to be executed within the security context of the affected site.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported firmware version.", "published": "2008-05-23T00:00:00", "modified": "2021-01-19T00:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/32434", "reporter": "This script is Copyright (C) 2008-2021 Tenable Network Security, Inc.", "references": ["https://www.barracuda.com/support/techalerts", "https://seclists.org/fulldisclosure/2008/May/564", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2333"], "cvelist": ["CVE-2008-2333"], "immutableFields": [], "lastseen": "2021-08-12T13:13:13", "history": [], "viewCount": 5, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2008-2333"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:66610"]}, {"type": "seebug", "idList": ["SSV:3326"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:19900"]}, {"type": "exploitdb", "idList": ["EDB-ID:31828"]}, {"type": "nessus", "idList": ["4518.PRM"]}], "modified": "2021-08-12T13:13:13", "rev": 2}, "score": {"value": 5.3, "vector": "NONE", "modified": "2021-08-12T13:13:13", "rev": 2}}, "objectVersion": "1.6", "pluginID": "32434", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(32434);\n script_version(\"1.18\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/19\");\n\n script_cve_id(\"CVE-2008-2333\");\n script_bugtraq_id(29340);\n script_xref(name:\"Secunia\", value:\"30362\");\n\n script_name(english:\"Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS\");\n script_summary(english:\"Checks firmware version\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a CGI script that is affected by a\ncross-site scripting vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its firmware version, the remote Barracuda Spam Firewall\ndevice fails to filter input to the 'email' parameter of the\n'/cgi-bin/ldap_test.cgi' script before using it to generate dynamic\ncontent. An unauthenticated, remote attacker may be able to leverage\nthis issue to inject arbitrary HTML or script code into a user's\nbrowser to be executed within the security context of the affected\nsite.\n\nNote that Nessus has not tested for this issue but has instead\nrelied only on the application's self-reported firmware version.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://seclists.org/fulldisclosure/2008/May/564\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.barracuda.com/support/techalerts\");\n script_set_attribute(attribute:\"solution\", value:\n\"Either configure the device to limit access to the web management\napplication by IP address or update to firmware release 3.5.11.025 or\nlater.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(79);\n\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2008/05/23\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:barracuda_networks:barracuda_spam_firewall\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses : XSS\");\n\n script_copyright(english:\"This script is Copyright (C) 2008-2021 Tenable Network Security, Inc.\");\n\n script_dependencies(\"barracuda_detect.nasl\");\n script_require_ports(\"Services/www\", 8000);\n script_require_keys(\"www/barracuda_spamfw\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"webapp_func.inc\");\n\nport = get_http_port(default:8000, embedded:TRUE);\nproduct = \"Barracuda Spam Firewall\";\n\n# Identify and check the firmware version.\ninstall = get_install_from_kb(\n appname : \"barracuda_spamfw\",\n port : port,\n exit_on_fail:TRUE\n);\ndir = install[\"dir\"];\nfirmware = install[\"ver\"];\n\nif (firmware == UNKNOWN_VER)\n audit(AUDIT_UNKNOWN_WEB_SERVER_VER, product, port);\n\nfix = \"3.5.11.025\";\nif (ver_compare(ver:firmware, fix:fix, strict:FALSE) < 0)\n{\n set_kb_item(name: 'www/'+port+'/XSS', value: TRUE);\n if (report_verbosity)\n {\n report =\n '\\n Product : ' + product +\n '\\n URL : ' + build_url(qs:dir, port:port) +\n '\\n Installed Version : ' + firmware +\n '\\n Fixed Version : ' + fix + '\\n';\n security_warning(port:port, extra:report);\n }\n else security_warning(port);\n exit(0);\n}\nelse audit(AUDIT_LISTEN_NOT_VULN, product, port, firmware);\n", "naslFamily": "CGI abuses : XSS", "cpe": ["cpe:/h:barracuda_networks:barracuda_spam_firewall"], "solution": "Either configure the device to limit access to the web management application by IP address or update to firmware release 3.5.11.025 or later.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "3.8"}, "exploitAvailable": false, "exploitEase": "No exploit is required", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-12T13:13:13", "differentElements": ["nessusSeverity"], "edition": 7}, {"bulletin": {"id": "BARRACUDA_LDAP_TEST_XSS.NASL", "hash": "88ff65e39931be36ae1badc9c8db811a", "type": "nessus", "bulletinFamily": "scanner", "title": "Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS", "description": "According to its firmware version, the remote Barracuda Spam Firewall device fails to filter input to the 'email' parameter of the '/cgi-bin/ldap_test.cgi' script before using it to generate dynamic content. An unauthenticated, remote attacker may be able to leverage this issue to inject arbitrary HTML or script code into a user's browser to be executed within the security context of the affected site.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported firmware version.", "published": "2008-05-23T00:00:00", "modified": "2021-01-19T00:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/32434", "reporter": "This script is Copyright (C) 2008-2021 Tenable Network Security, Inc.", "references": ["https://www.barracuda.com/support/techalerts", "https://seclists.org/fulldisclosure/2008/May/564", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2333"], "cvelist": ["CVE-2008-2333"], "immutableFields": [], "lastseen": "2021-08-19T13:10:33", "history": [], "viewCount": 5, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2008-2333"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:66610"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:19900"]}, {"type": "exploitdb", "idList": ["EDB-ID:31828"]}, {"type": "seebug", "idList": ["SSV:3326"]}, {"type": "nessus", "idList": ["4518.PRM"]}], "modified": "2021-08-19T13:10:33", "rev": 2}, "score": {"value": 5.3, "vector": "NONE", "modified": "2021-08-19T13:10:33", "rev": 2}}, "objectVersion": "1.6", "pluginID": "32434", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(32434);\n script_version(\"1.18\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/19\");\n\n script_cve_id(\"CVE-2008-2333\");\n script_bugtraq_id(29340);\n script_xref(name:\"Secunia\", value:\"30362\");\n\n script_name(english:\"Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS\");\n script_summary(english:\"Checks firmware version\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a CGI script that is affected by a\ncross-site scripting vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its firmware version, the remote Barracuda Spam Firewall\ndevice fails to filter input to the 'email' parameter of the\n'/cgi-bin/ldap_test.cgi' script before using it to generate dynamic\ncontent. An unauthenticated, remote attacker may be able to leverage\nthis issue to inject arbitrary HTML or script code into a user's\nbrowser to be executed within the security context of the affected\nsite.\n\nNote that Nessus has not tested for this issue but has instead\nrelied only on the application's self-reported firmware version.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://seclists.org/fulldisclosure/2008/May/564\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.barracuda.com/support/techalerts\");\n script_set_attribute(attribute:\"solution\", value:\n\"Either configure the device to limit access to the web management\napplication by IP address or update to firmware release 3.5.11.025 or\nlater.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(79);\n\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2008/05/23\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:barracuda_networks:barracuda_spam_firewall\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses : XSS\");\n\n script_copyright(english:\"This script is Copyright (C) 2008-2021 Tenable Network Security, Inc.\");\n\n script_dependencies(\"barracuda_detect.nasl\");\n script_require_ports(\"Services/www\", 8000);\n script_require_keys(\"www/barracuda_spamfw\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"webapp_func.inc\");\n\nport = get_http_port(default:8000, embedded:TRUE);\nproduct = \"Barracuda Spam Firewall\";\n\n# Identify and check the firmware version.\ninstall = get_install_from_kb(\n appname : \"barracuda_spamfw\",\n port : port,\n exit_on_fail:TRUE\n);\ndir = install[\"dir\"];\nfirmware = install[\"ver\"];\n\nif (firmware == UNKNOWN_VER)\n audit(AUDIT_UNKNOWN_WEB_SERVER_VER, product, port);\n\nfix = \"3.5.11.025\";\nif (ver_compare(ver:firmware, fix:fix, strict:FALSE) < 0)\n{\n set_kb_item(name: 'www/'+port+'/XSS', value: TRUE);\n if (report_verbosity)\n {\n report =\n '\\n Product : ' + product +\n '\\n URL : ' + build_url(qs:dir, port:port) +\n '\\n Installed Version : ' + firmware +\n '\\n Fixed Version : ' + fix + '\\n';\n security_warning(port:port, extra:report);\n }\n else security_warning(port);\n exit(0);\n}\nelse audit(AUDIT_LISTEN_NOT_VULN, product, port, firmware);\n", "naslFamily": "CGI abuses : XSS", "cpe": ["cpe:/h:barracuda_networks:barracuda_spam_firewall"], "solution": "Either configure the device to limit access to the web management application by IP address or update to firmware release 3.5.11.025 or later.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "3.8"}, "exploitAvailable": false, "exploitEase": "No exploit is required", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-19T13:10:33", "differentElements": ["cpe", "cvss"], "edition": 8}, {"bulletin": {"id": "BARRACUDA_LDAP_TEST_XSS.NASL", "hash": "d9f9820dddf4874205deabfb5d9fd2ac", "type": "nessus", "bulletinFamily": "scanner", "title": "Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS", "description": "According to its firmware version, the remote Barracuda Spam Firewall device fails to filter input to the 'email' parameter of the '/cgi-bin/ldap_test.cgi' script before using it to generate dynamic content. An unauthenticated, remote attacker may be able to leverage this issue to inject arbitrary HTML or script code into a user's browser to be executed within the security context of the affected site.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported firmware version.", "published": "2008-05-23T00:00:00", "modified": "2021-01-19T00:00:00", "cvss": {"score": 4.3, "vector": "CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/32434", "reporter": "This script is Copyright (C) 2008-2021 Tenable Network Security, Inc.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2333", "https://www.barracuda.com/support/techalerts", "https://seclists.org/fulldisclosure/2008/May/564"], "cvelist": ["CVE-2008-2333"], "immutableFields": [], "lastseen": "2021-10-10T16:26:38", "history": [], "viewCount": 5, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2008-2333"]}, {"type": "nessus", "idList": ["4518.PRM"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:66610"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:19900"]}, {"type": "exploitdb", "idList": ["EDB-ID:31828"]}, {"type": "seebug", "idList": ["SSV:3326"]}], "modified": "2021-10-10T16:26:38", "rev": 2}, "score": {"value": 5.3, "vector": "NONE", "modified": "2021-10-10T16:26:38", "rev": 2}}, "objectVersion": "1.6", "pluginID": "32434", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(32434);\n script_version(\"1.18\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/19\");\n\n script_cve_id(\"CVE-2008-2333\");\n script_bugtraq_id(29340);\n script_xref(name:\"Secunia\", value:\"30362\");\n\n script_name(english:\"Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS\");\n script_summary(english:\"Checks firmware version\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a CGI script that is affected by a\ncross-site scripting vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its firmware version, the remote Barracuda Spam Firewall\ndevice fails to filter input to the 'email' parameter of the\n'/cgi-bin/ldap_test.cgi' script before using it to generate dynamic\ncontent. An unauthenticated, remote attacker may be able to leverage\nthis issue to inject arbitrary HTML or script code into a user's\nbrowser to be executed within the security context of the affected\nsite.\n\nNote that Nessus has not tested for this issue but has instead\nrelied only on the application's self-reported firmware version.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://seclists.org/fulldisclosure/2008/May/564\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.barracuda.com/support/techalerts\");\n script_set_attribute(attribute:\"solution\", value:\n\"Either configure the device to limit access to the web management\napplication by IP address or update to firmware release 3.5.11.025 or\nlater.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(79);\n\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2008/05/23\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:barracuda_networks:barracuda_spam_firewall\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses : XSS\");\n\n script_copyright(english:\"This script is Copyright (C) 2008-2021 Tenable Network Security, Inc.\");\n\n script_dependencies(\"barracuda_detect.nasl\");\n script_require_ports(\"Services/www\", 8000);\n script_require_keys(\"www/barracuda_spamfw\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"webapp_func.inc\");\n\nport = get_http_port(default:8000, embedded:TRUE);\nproduct = \"Barracuda Spam Firewall\";\n\n# Identify and check the firmware version.\ninstall = get_install_from_kb(\n appname : \"barracuda_spamfw\",\n port : port,\n exit_on_fail:TRUE\n);\ndir = install[\"dir\"];\nfirmware = install[\"ver\"];\n\nif (firmware == UNKNOWN_VER)\n audit(AUDIT_UNKNOWN_WEB_SERVER_VER, product, port);\n\nfix = \"3.5.11.025\";\nif (ver_compare(ver:firmware, fix:fix, strict:FALSE) < 0)\n{\n set_kb_item(name: 'www/'+port+'/XSS', value: TRUE);\n if (report_verbosity)\n {\n report =\n '\\n Product : ' + product +\n '\\n URL : ' + build_url(qs:dir, port:port) +\n '\\n Installed Version : ' + firmware +\n '\\n Fixed Version : ' + fix + '\\n';\n security_warning(port:port, extra:report);\n }\n else security_warning(port);\n exit(0);\n}\nelse audit(AUDIT_LISTEN_NOT_VULN, product, port, firmware);\n", "naslFamily": "CGI abuses : XSS", "cpe": ["cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:*:*:*:*:*:*:*:*"], "solution": "Either configure the device to limit access to the web management application by IP address or update to firmware release 3.5.11.025 or later.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "3.8"}, "exploitAvailable": false, "exploitEase": "No exploit is required", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-10-10T16:26:38", "differentElements": ["cpe", "cvss"], "edition": 9}], "viewCount": 5, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2008-2333"]}, {"type": "nessus", "idList": ["4518.PRM"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:66610"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:19900"]}, {"type": "exploitdb", "idList": ["EDB-ID:31828"]}, {"type": "seebug", "idList": ["SSV:3326"]}], "modified": "2021-10-16T02:53:07", "rev": 2}, "score": {"value": 5.3, "vector": "NONE", "modified": "2021-10-16T02:53:07", "rev": 2}}, "objectVersion": "1.6", "pluginID": "32434", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(32434);\n script_version(\"1.18\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/19\");\n\n script_cve_id(\"CVE-2008-2333\");\n script_bugtraq_id(29340);\n script_xref(name:\"Secunia\", value:\"30362\");\n\n script_name(english:\"Barracuda Spam Firewall cgi-bin/ldap_test.cgi email Parameter XSS\");\n script_summary(english:\"Checks firmware version\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a CGI script that is affected by a\ncross-site scripting vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its firmware version, the remote Barracuda Spam Firewall\ndevice fails to filter input to the 'email' parameter of the\n'/cgi-bin/ldap_test.cgi' script before using it to generate dynamic\ncontent. An unauthenticated, remote attacker may be able to leverage\nthis issue to inject arbitrary HTML or script code into a user's\nbrowser to be executed within the security context of the affected\nsite.\n\nNote that Nessus has not tested for this issue but has instead\nrelied only on the application's self-reported firmware version.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://seclists.org/fulldisclosure/2008/May/564\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.barracuda.com/support/techalerts\");\n script_set_attribute(attribute:\"solution\", value:\n\"Either configure the device to limit access to the web management\napplication by IP address or update to firmware release 3.5.11.025 or\nlater.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(79);\n\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2008/05/23\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:barracuda_networks:barracuda_spam_firewall\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses : XSS\");\n\n script_copyright(english:\"This script is Copyright (C) 2008-2021 Tenable Network Security, Inc.\");\n\n script_dependencies(\"barracuda_detect.nasl\");\n script_require_ports(\"Services/www\", 8000);\n script_require_keys(\"www/barracuda_spamfw\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"webapp_func.inc\");\n\nport = get_http_port(default:8000, embedded:TRUE);\nproduct = \"Barracuda Spam Firewall\";\n\n# Identify and check the firmware version.\ninstall = get_install_from_kb(\n appname : \"barracuda_spamfw\",\n port : port,\n exit_on_fail:TRUE\n);\ndir = install[\"dir\"];\nfirmware = install[\"ver\"];\n\nif (firmware == UNKNOWN_VER)\n audit(AUDIT_UNKNOWN_WEB_SERVER_VER, product, port);\n\nfix = \"3.5.11.025\";\nif (ver_compare(ver:firmware, fix:fix, strict:FALSE) < 0)\n{\n set_kb_item(name: 'www/'+port+'/XSS', value: TRUE);\n if (report_verbosity)\n {\n report =\n '\\n Product : ' + product +\n '\\n URL : ' + build_url(qs:dir, port:port) +\n '\\n Installed Version : ' + firmware +\n '\\n Fixed Version : ' + fix + '\\n';\n security_warning(port:port, extra:report);\n }\n else security_warning(port);\n exit(0);\n}\nelse audit(AUDIT_LISTEN_NOT_VULN, product, port, firmware);\n", "naslFamily": "CGI abuses : XSS", "cpe": ["cpe:/h:barracuda_networks:barracuda_spam_firewall"], "solution": "Either configure the device to limit access to the web management application by IP address or update to firmware release 3.5.11.025 or later.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "3.8"}, "exploitAvailable": false, "exploitEase": "No exploit is required", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.nessus.NessusBulletin", "robots.models.base.Bulletin"]}], "exploitdb": [{"id": "EDB-ID:31828", "hash": "2c1f2023238a5d059c23972f0e09651eea60c39897cfeaad2d8761182535d41f", "type": "exploitdb", "bulletinFamily": "exploit", "title": "Barracuda Spam Firewall <= 3.5.11 - 'ldap_test.cgi' Cross-Site Scripting Vulnerability", "description": "Barracuda Spam Firewall 3.5.11 'ldap_test.cgi' Cross-Site Scripting Vulnerability. CVE-2008-2333. Remote exploit for hardware platform", "published": "2008-05-22T00:00:00", "modified": "2008-05-22T00:00:00", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "https://www.exploit-db.com/exploits/31828/", "reporter": "Information Risk Management Plc", "references": [], "cvelist": ["CVE-2008-2333"], "lastseen": "2016-02-03T15:35:11", "history": [{"bulletin": {"bulletinFamily": "exploit", "cvelist": ["CVE-2008-2333"], "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "cvss2": {}, "cvss3": {}, "description": "Barracuda Spam Firewall 3.5.11 'ldap_test.cgi' Cross-Site Scripting Vulnerability. CVE-2008-2333. Remote exploit for hardware platform", "edition": 1, "enchantments": {"dependencies": {"modified": "2016-02-03T15:35:11", "references": [{"idList": ["CVE-2008-2333"], "type": "cve"}, {"idList": ["BARRACUDA_LDAP_TEST_XSS.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:DOC:19900"], "type": "securityvulns"}, {"idList": ["SSV:3326"], "type": "seebug"}, {"idList": ["PACKETSTORM:66610"], "type": "packetstorm"}], "rev": 2}, "score": {"modified": "2016-02-03T15:35:11", "rev": 2, "value": 4.9, "vector": "NONE"}}, "hash": "0c382027499772fb41e5685822dde2807ee284a29f3237e0c09eae2cac874bba", "hashmap": [{"hash": "59337c78db7163c6296dfbe6ee03398e", "key": "modified"}, {"hash": "6e9bdd2021503689a2ad9254c9cdf2b3", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "708697c63f7eb369319c6523380bdf7a", "key": "bulletinFamily"}, {"hash": "7f3ab33a9896472a7d6285570d26f3c8", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "59337c78db7163c6296dfbe6ee03398e", "key": "published"}, {"hash": "e3d0503e60fa6e4a07c75c688700d9d8", "key": "title"}, {"hash": "d2716046f0c801a5a93f7e0ad8715a37", "key": "description"}, {"hash": "916b5dbd201b469998d9b4a4c8bc4e08", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "5ade4bb4b1cdaa2832309cbc31515875", "key": "cvelist"}, {"hash": "c53b7e3eb9a6075384569c4bd566fc4a", "key": "reporter"}], "history": [], "href": "https://www.exploit-db.com/exploits/31828/", "id": "EDB-ID:31828", "immutableFields": [], "lastseen": "2016-02-03T15:35:11", "modified": "2008-05-22T00:00:00", "objectVersion": "1.5", "published": "2008-05-22T00:00:00", "references": [], "reporter": "Information Risk Management Plc", "title": "Barracuda Spam Firewall <= 3.5.11 - 'ldap_test.cgi' Cross-Site Scripting Vulnerability", "type": "exploitdb", "viewCount": 10}, "different_elements": ["cvss2"], "edition": 1, "lastseen": "2016-02-03T15:35:11"}], "viewCount": 10, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2008-2333"]}, {"type": "nessus", "idList": ["4518.PRM", "BARRACUDA_LDAP_TEST_XSS.NASL"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:19900"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:66610"]}, {"type": "seebug", "idList": ["SSV:3326"]}], "modified": "2016-02-03T15:35:11", "rev": 2}, "score": {"value": 4.9, "vector": "NONE", "modified": "2016-02-03T15:35:11", "rev": 2}}, "objectVersion": "1.5", "sourceHref": "https://www.exploit-db.com/download/31828/", "sourceData": "source: http://www.securityfocus.com/bid/29340/info\r\n\r\nBarracuda Spam Firewall is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input.\r\n\r\nAn attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.\r\n\r\nFirmware prior to Barracuda Spam Firewall 3.5.11.025 is vulnerable. \r\n\r\nhttps://www.example.com/cgi-bin/ldap_test.cgi?host=127.0.0.1&port=1&tl s_mode=tls_mode&tls_require=&username=&password=&filter=&searchbase=&uni que_attr=&email_attr=&domain=*&email=%3Cscript%3Ealert(document.cookie)% 3C/script%3E ", "osvdbidlist": ["45611"], "_object_type": "robots.models.exploitdb.ExploitDbBulletin", "_object_types": ["robots.models.exploitdb.ExploitDbBulletin", "robots.models.base.Bulletin"], "immutableFields": [], "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true}, "cvss3": {}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "708697c63f7eb369319c6523380bdf7a"}, {"key": "cvelist", "hash": "5ade4bb4b1cdaa2832309cbc31515875"}, {"key": "cvss", "hash": "6e9bdd2021503689a2ad9254c9cdf2b3"}, {"key": "cvss2", "hash": "25131d66a9f3961140b068f4b41aa42b"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "d2716046f0c801a5a93f7e0ad8715a37"}, {"key": "href", "hash": "7f3ab33a9896472a7d6285570d26f3c8"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "59337c78db7163c6296dfbe6ee03398e"}, {"key": "published", "hash": "59337c78db7163c6296dfbe6ee03398e"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "c53b7e3eb9a6075384569c4bd566fc4a"}, {"key": "title", "hash": "e3d0503e60fa6e4a07c75c688700d9d8"}, {"key": "type", "hash": "916b5dbd201b469998d9b4a4c8bc4e08"}], "scheme": null}], "seebug": [{"sourceData": "\n https://&lt;vulnerable_host&gt;/cgi-bin/ldap_test.cgi?host=127.0.0.1&amp;port=1&amp;tls_mode=tls_mode&amp;tls_require=&amp;username=&amp;password=&amp;filter=&amp;searchbase=&amp;unique_attr=&amp;email_attr=&amp;domain=*&amp;email=%3Cscript%3Ealert(d\n ", "status": "poc,details", "history": [], "description": "BUGTRAQ ID: 29340\r\nCVE(CAN) ID: CVE-2008-2333\r\n\r\nBarracuda Spam Firewall\u662f\u7528\u4e8e\u4fdd\u62a4\u90ae\u4ef6\u670d\u52a1\u5668\u7684\u96c6\u6210\u786c\u4ef6\u548c\u8f6f\u4ef6\u5783\u573e\u90ae\u4ef6\u89e3\u51b3\u65b9\u6848\u3002\r\n\r\nBarracuda\u5783\u573e\u90ae\u4ef6\u9632\u706b\u5899\u8bbe\u5907\u7684web\u7ba1\u7406\u63a5\u53e3\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff0cBarracuda\u8bbe\u5907\u901a\u8fc7ldap_test.cgi\u811a\u672c\u63d0\u4f9bLDAP\u6d4b\u8bd5\u529f\u80fd\uff0c\u8fd9\u4e2a\u811a\u672c\u6ca1\u6709\u5145\u5206\u7684\u9a8c\u8bc1\u7528\u6237\u5728email\u53c2\u6570\u4e2d\u6240\u63d0\u4f9b\u7684\u8f93\u5165\uff0c\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u4ee5\u901a\u8fc7\u5411\u7ba1\u7406\u63a5\u53e3\u63d0\u4ea4\u6076\u610f\u53c2\u6570\u6267\u884c\u8de8\u7ad9\u811a\u672c\u653b\u51fb\uff0c\u5bfc\u81f4\u5728\u6d4f\u89c8\u5668\u4e2d\u4ee5Barracuda\u8bbe\u5907\u7684\u6743\u9650\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\n\nBarracuda Networks Barracuda Spam Firewall &lt; 3.5.11.025\n Barracuda Networks\r\n------------------\r\n\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a\r\n\r\n<a href=http://www.barracudanetworks.com/ns/products/spam_overview.php target=_blank>http://www.barracudanetworks.com/ns/products/spam_overview.php</a>", "sourceHref": "https://www.seebug.org/vuldb/ssvid-3326", "reporter": "Root", "href": "https://www.seebug.org/vuldb/ssvid-3326", "type": "seebug", "_object_types": ["robots.models.base.Bulletin", "robots.models.seebug.SeebugBulletin"], "viewCount": 6, "references": [], "lastseen": "2017-11-19T21:41:17", "published": "2008-05-24T00:00:00", "objectVersion": "1.5", "cvelist": ["CVE-2008-2333"], "id": "SSV:3326", "enchantments_done": [], "modified": "2008-05-24T00:00:00", "title": "Barracuda\u5783\u573e\u90ae\u4ef6\u9632\u706b\u5899ldap_test.cgi\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "bulletinFamily": "exploit", "enchantments": {"score": {"value": 6.2, "vector": "NONE", "modified": "2017-11-19T21:41:17", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2008-2333"]}, {"type": "exploitdb", "idList": ["EDB-ID:31828"]}, {"type": "nessus", "idList": ["4518.PRM", "BARRACUDA_LDAP_TEST_XSS.NASL"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:19900"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:66610"]}], "modified": "2017-11-19T21:41:17", "rev": 2}}, "_object_type": "robots.models.seebug.SeebugBulletin", "immutableFields": [], "cvss2": {}, "cvss3": {}}], "packetstorm": [{"id": "PACKETSTORM:66610", "hash": "e76f9d804b4d11abe8921c973aae3751", "type": "packetstorm", "bulletinFamily": "exploit", "title": "barracuda-xss.txt", "description": "", "published": "2008-05-22T00:00:00", "modified": "2008-05-22T00:00:00", "cvss": {"vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/", "score": 4.3}, "href": "https://packetstormsecurity.com/files/66610/barracuda-xss.txt.html", "reporter": "irmplc.com", "references": [], "cvelist": ["CVE-2008-2333"], "lastseen": "2016-12-05T22:24:22", "history": [], "viewCount": 6, "enchantments": {"score": {"value": 6.1, "vector": "NONE", "modified": "2016-12-05T22:24:22", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2008-2333"]}, {"type": "seebug", "idList": ["SSV:3326"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:19900"]}, {"type": "exploitdb", "idList": ["EDB-ID:31828"]}, {"type": "nessus", "idList": ["4518.PRM", "BARRACUDA_LDAP_TEST_XSS.NASL"]}], "modified": "2016-12-05T22:24:22", "rev": 2}}, "objectVersion": "1.5", "sourceHref": "https://packetstormsecurity.com/files/download/66610/barracuda-xss.txt", "sourceData": "`Barracuda Networks Spam Firewall Cross-Site Scripting Vulnerability \nCVE Number: CVE-2008-2333 \n \n \nVulnerability Type / Importance: Cross-Site Scripting (Reflected) / \nMedium \n \nProblem Discovered 24 April 2008 \nVendor Contacted 24 April 2008 \nAdvisory Published 22 May 2008 \n \nAbstract \nThe Barracuda Spam Firewall device web administration interface is \nvulnerable to a reflected cross-site scripting vulnerability which may \nallow theft of administrative credentials or downloading of malicious \ncontent. \n \nDescription: \n \nThe Barracuda device presents LDAP testing functionality via a script \ncalled 'ldap_test.cgi'. The script does not sufficiently validate \nuser-supplied input within the 'email' parameter. As a result, \nclient-supplied script code can be injected into the 'email' parameter \nthat would execute in the browser within the security context of the \nBarracuda device. \nVendor information: \nhttp://www.barracudanetworks.com/ns/support/tech_alert.php \n \nProof of Concept: \n \nhttps://<vulnerable_host>/cgi-bin/ldap_test.cgi?host=127.0.0.1&port=1&tl \ns_mode=tls_mode&tls_require=&username=&password=&filter=&searchbase=&uni \nque_attr=&email_attr=&domain=*&email=%3Cscript%3Ealert(document.cookie)% \n3C/script%3E \n \nMitigation: \n \nAccess to the web management application can be limited by IP address. \nFirmware release 3.5.11.025 has been released by the vendor to address \nthis issue; however the patch has not been tested by IRM. \n \nTested/Affected Versions: \n \nIRM confirmed the presence of this vulnerability in Barracuda Spam \nFirewall 600 Firmware 3.5.11.020. \nThe vendor has confirmed the issue exists in all versions prior to \n3.5.11.025. \n \nCredits \n \nResearch and Advisory: Information Risk Management Plc. \n \nAbout IRM: \n \nInformation Risk Management Plc (IRM) is a vendor independent \ninformation risk consultancy, founded in 1998. IRM has become a leader \nin client side risk assessment, technical level auditing and in the \nresearch and development of security vulnerabilities and tools. IRM is \nheadquartered in London with Technical Centres in Europe and Asia as \nwell as Regional Offices in the Far East and North America. Please visit \nour website at www.irmplc.com for further information. \n \nDisclaimer: \n \nAll information in this advisory is provided on an 'as is' basis in the \nhope that it will be useful. Information Risk Management Plc is not \nresponsible for any risks or occurrences caused by the application of \nthis information. \n \n`\n", "_object_type": "robots.models.packetstorm.PacketstormBulletin", "_object_types": ["robots.models.packetstorm.PacketstormBulletin", "robots.models.base.Bulletin"], "immutableFields": [], "cvss2": {}, "cvss3": {}}]}