Approved changes feed: RSS · Atom

cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:3.3.03.053:*:*:*:*:*:*:*

part: h version: 3.3.03.053 update: *

VendorBarracuda Networks (bfe59373-3c93-53d6-8b67-f8fb7d375f0c)
ProductBarracuda Spam Firewall (bd94698e-4b78-56d6-995f-3b3866166c6e)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2008-2333 vulnerable 2026-06-08 04:50:23.530477 Details available
Cross-site scripting (XSS) vulnerability in ldap_test.cgi in Barracuda Spam Firewall (BSF) before 3.5.11.025 allows remote attackers to inject arbitrary web script or HTML via the email parameter.
Published: 2008-05-23T15:00:00.000Z
Updated: 2024-08-07T08:58:02.144Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2007-1669 not_vulnerable 2026-06-08 04:49:43.164825 Details available
zoo decoder 2.10 (zoo-2.10), as used in multiple products including (1) Barracuda Spam Firewall 3.4 and later with virusdef before 2.0.6399, (2) Spam Firewall before 3.4 20070319 with virusdef before 2.0.6399o, and (3) AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.
Published: 2007-05-09T00:00:00.000Z
Updated: 2024-08-07T13:06:25.797Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2006-4082 vulnerable 2026-06-08 04:49:10.913497 Details available
Barracuda Spam Firewall (BSF), possibly 3.3.03.053, contains a hardcoded password for the admin account for logins from 127.0.0.1 (localhost), which allows local users to gain privileges.
Published: 2006-08-11T10:00:00.000Z
Updated: 2024-08-07T18:57:45.565Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2006-4081 vulnerable 2026-06-08 04:49:10.913166 Details available
preview_email.cgi in Barracuda Spam Firewall (BSF) 3.3.01.001 through 3.3.03.053 allows remote attackers to execute commands via shell metacharacters ("|" pipe symbol) in the file parameter. NOTE: the attack can be extended to arbitrary commands by the presence of CVE-2006-4000.
Published: 2006-08-11T10:00:00.000Z
Updated: 2024-08-07T18:57:44.859Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2006-4001 vulnerable 2026-06-08 04:49:10.679316 Details available
Login.pm in Barracuda Spam Firewall (BSF) 3.3.01.001 through 3.3.03.053 contains a hard-coded password for the guest account, which allows remote attackers to read sensitive information such as e-mail logs, and possibly e-mail contents and the admin password.
Published: 2006-08-05T01:00:00.000Z
Updated: 2024-08-07T18:48:39.443Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2006-4000 vulnerable 2026-06-08 04:49:10.677912 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.