Approved changes feed: RSS · Atom

cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.01.001:*:*:*:*:*:*:*

part: h version: 3.3.01.001 update: *

VendorBarracuda Networks (bfe59373-3c93-53d6-8b67-f8fb7d375f0c)
ProductBarracuda Spam Firewall (bd94698e-4b78-56d6-995f-3b3866166c6e)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2008-2333 vulnerable 2026-06-08 04:50:23.529478 Details available
Cross-site scripting (XSS) vulnerability in ldap_test.cgi in Barracuda Spam Firewall (BSF) before 3.5.11.025 allows remote attackers to inject arbitrary web script or HTML via the email parameter.
Published: 2008-05-23T15:00:00.000Z
Updated: 2024-08-07T08:58:02.144Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2007-1669 not_vulnerable 2026-06-08 04:49:43.163831 Details available
zoo decoder 2.10 (zoo-2.10), as used in multiple products including (1) Barracuda Spam Firewall 3.4 and later with virusdef before 2.0.6399, (2) Spam Firewall before 3.4 20070319 with virusdef before 2.0.6399o, and (3) AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.
Published: 2007-05-09T00:00:00.000Z
Updated: 2024-08-07T13:06:25.797Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2006-4081 vulnerable 2026-06-08 04:49:10.913138 Details available
preview_email.cgi in Barracuda Spam Firewall (BSF) 3.3.01.001 through 3.3.03.053 allows remote attackers to execute commands via shell metacharacters ("|" pipe symbol) in the file parameter. NOTE: the attack can be extended to arbitrary commands by the presence of CVE-2006-4000.
Published: 2006-08-11T10:00:00.000Z
Updated: 2024-08-07T18:57:44.859Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2006-4001 vulnerable 2026-06-08 04:49:10.679293 Details available
Login.pm in Barracuda Spam Firewall (BSF) 3.3.01.001 through 3.3.03.053 contains a hard-coded password for the guest account, which allows remote attackers to read sensitive information such as e-mail logs, and possibly e-mail contents and the admin password.
Published: 2006-08-05T01:00:00.000Z
Updated: 2024-08-07T18:48:39.443Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2006-4000 vulnerable 2026-06-08 04:49:10.677402 Details available
Directory traversal vulnerability in cgi-bin/preview_email.cgi in Barracuda Spam Firewall (BSF) 3.3.01.001 through 3.3.03.053 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the file parameter.
Published: 2006-08-05T01:00:00.000Z
Updated: 2024-08-07T18:48:39.437Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.