Approved changes feed: RSS · Atom

cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.1.17:*:*:*:*:*:*:*

part: h version: 3.1.17 update: *

VendorBarracuda Networks (bfe59373-3c93-53d6-8b67-f8fb7d375f0c)
ProductBarracuda Spam Firewall (bd94698e-4b78-56d6-995f-3b3866166c6e)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2008-2333 vulnerable 2026-06-08 04:50:23.527628 Details available
Cross-site scripting (XSS) vulnerability in ldap_test.cgi in Barracuda Spam Firewall (BSF) before 3.5.11.025 allows remote attackers to inject arbitrary web script or HTML via the email parameter.
Published: 2008-05-23T15:00:00.000Z
Updated: 2024-08-07T08:58:02.144Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2007-1669 not_vulnerable 2026-06-08 04:49:43.161555 Details available
zoo decoder 2.10 (zoo-2.10), as used in multiple products including (1) Barracuda Spam Firewall 3.4 and later with virusdef before 2.0.6399, (2) Spam Firewall before 3.4 20070319 with virusdef before 2.0.6399o, and (3) AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.
Published: 2007-05-09T00:00:00.000Z
Updated: 2024-08-07T13:06:25.797Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2005-2849 vulnerable 2026-06-08 04:48:30.687790 Details available
Argument injection vulnerability in Barracuda Spam Firewall running firmware 3.1.16 and 3.1.17 allows remote attackers to (1) read portions of source code via the -f option to Dig (dig_device.cgi), (2) determine file existence via the -r argument to Tcpdump (tcpdump_device.cgi) or (3) modify files in the cgi-bin directory via the -w argument to Tcpdump.
Published: 2005-09-08T04:00:00.000Z
Updated: 2024-08-07T22:53:28.632Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2005-2848 vulnerable 2026-06-08 04:48:30.687478 Details available
Directory traversal vulnerability in img.pl in Barracuda Spam Firewall running firmware 3.1.16 and 3.1.17 allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter.
Published: 2005-09-08T04:00:00.000Z
Updated: 2024-08-07T22:53:28.683Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2005-2847 vulnerable 2026-06-08 04:48:30.687027 Details available
img.pl in Barracuda Spam Firewall running firmware 3.1.16 and 3.1.17 allows remote attackers to execute arbitrary commands via shell metacharacters in the f parameter.
Published: 2005-09-08T04:00:00.000Z
Updated: 2024-08-07T22:45:02.439Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.