Barracuda Spam Firewall
Approved changes feed: RSS · Atom
cpe:2.3:h:barracuda_networks:barracuda_spam_firewall:*:*:*:*:*:*:*:*
part: h version: * update: *
| Vendor | Barracuda Networks (bfe59373-3c93-53d6-8b67-f8fb7d375f0c) |
|---|---|
| Product | Barracuda Spam Firewall (bd94698e-4b78-56d6-995f-3b3866166c6e) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2008-2333 |
vulnerable | 2026-06-08 04:50:23.521549 |
Details available
Cross-site scripting (XSS) vulnerability in ldap_test.cgi in Barracuda Spam Firewall (BSF) before 3.5.11.025 allows remote attackers to inject arbitrary web script or HTML via the email parameter.
Published: 2008-05-23T15:00:00.000Z
Updated: 2024-08-07T08:58:02.144Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2008-1094 |
vulnerable | 2026-06-08 04:50:18.882390 |
Details available
SQL injection vulnerability in index.cgi in the Account View page in Barracuda Spam Firewall (BSF) before 3.5.12.007 allows remote authenticated administrators to execute arbitrary SQL commands via a pattern_x parameter in a search_count_equals action, as demonstrated by the pattern_0 parameter.
Published: 2008-12-19T17:00:00.000Z
Updated: 2024-08-07T08:08:57.706Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2008-0971 |
vulnerable | 2026-06-08 04:50:18.497421 |
Details available
Multiple cross-site scripting (XSS) vulnerabilities in index.cgi in Barracuda Spam Firewall (BSF) before 3.5.12.007, Message Archiver before 1.2.1.002, Web Filter before 3.3.0.052, IM Firewall before 3.1.01.017, and Load Balancer before 2.3.024 allow remote attackers to inject arbitrary web script or HTML via (1) the Policy Name field in Search Based Retention Policy in Message Archiver; unspecified parameters in the (2) IP Configuration, (3) Administration, (4) Journal Accounts, (5) Retention Policy, and (6) GroupWise Sync components in Message Archiver; (7) input to search operations in Web Filter; and (8) input used in error messages and (9) hidden INPUT elements in (a) Spam Firewall, (b) IM Firewall, and (c) Web Filter.
Published: 2008-12-19T17:00:00.000Z
Updated: 2024-08-07T08:01:40.205Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2007-5058 |
vulnerable | 2026-06-08 04:49:57.779198 |
Details available
Cross-site scripting (XSS) vulnerability in the Web administration interface in Barracuda Spam Firewall before firmware 3.5.10.016 allows remote attackers to inject arbitrary web script or HTML via the username field in a login attempt, which is not properly handled when the Monitor Web Syslog screen is open.
Published: 2007-09-24T22:00:00.000Z
Updated: 2024-08-07T15:17:27.950Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2007-1673 |
vulnerable | 2026-06-08 04:49:43.206336 |
Details available
unzoo.c, as used in multiple products including AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.
Published: 2007-05-09T01:00:00.000Z
Updated: 2024-08-07T13:06:25.976Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.