Approved changes feed: RSS · Atom

cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.16:*:*:*:*:*:*:*

part: h version: 3.1.16 update: *

VendorBarracuda Networks (bfe59373-3c93-53d6-8b67-f8fb7d375f0c)
ProductBarracuda Spam Firewall (bd94698e-4b78-56d6-995f-3b3866166c6e)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2008-2333 vulnerable 2026-06-08 04:50:23.527076 Details available
Cross-site scripting (XSS) vulnerability in ldap_test.cgi in Barracuda Spam Firewall (BSF) before 3.5.11.025 allows remote attackers to inject arbitrary web script or HTML via the email parameter.
Published: 2008-05-23T15:00:00.000Z
Updated: 2024-08-07T08:58:02.144Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2005-2849 vulnerable 2026-06-08 04:48:30.687770 Details available
Argument injection vulnerability in Barracuda Spam Firewall running firmware 3.1.16 and 3.1.17 allows remote attackers to (1) read portions of source code via the -f option to Dig (dig_device.cgi), (2) determine file existence via the -r argument to Tcpdump (tcpdump_device.cgi) or (3) modify files in the cgi-bin directory via the -w argument to Tcpdump.
Published: 2005-09-08T04:00:00.000Z
Updated: 2024-08-07T22:53:28.632Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2005-2848 vulnerable 2026-06-08 04:48:30.687453 Details available
Directory traversal vulnerability in img.pl in Barracuda Spam Firewall running firmware 3.1.16 and 3.1.17 allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter.
Published: 2005-09-08T04:00:00.000Z
Updated: 2024-08-07T22:53:28.683Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2005-2847 vulnerable 2026-06-08 04:48:30.686238 Details available
img.pl in Barracuda Spam Firewall running firmware 3.1.16 and 3.1.17 allows remote attackers to execute arbitrary commands via shell metacharacters in the f parameter.
Published: 2005-09-08T04:00:00.000Z
Updated: 2024-08-07T22:45:02.439Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.