Vulnerabilities > Barracuda Networks > Barracuda Spam Firewall > 3.3.03.055
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-05-23 | CVE-2008-2333 | Cross-Site Scripting vulnerability in Barracuda Networks Barracuda Spam Firewall Cross-site scripting (XSS) vulnerability in ldap_test.cgi in Barracuda Spam Firewall (BSF) before 3.5.11.025 allows remote attackers to inject arbitrary web script or HTML via the email parameter. | 4.3 |
2007-05-09 | CVE-2007-1669 | Remote Denial of Service vulnerability in Multiple Vendors Zoo Compression Algorithm zoo decoder 2.10 (zoo-2.10), as used in multiple products including (1) Barracuda Spam Firewall 3.4 and later with virusdef before 2.0.6399, (2) Spam Firewall before 3.4 20070319 with virusdef before 2.0.6399o, and (3) AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file. | 7.8 |
2006-08-05 | CVE-2006-4001 | Multiple vulnerability in Barracuda Networks Spam Firewall 3.3.01.001/3.3.03.053/3.3.03.055 Login.pm in Barracuda Spam Firewall (BSF) 3.3.01.001 through 3.3.03.053 contains a hard-coded password for the guest account, which allows remote attackers to read sensitive information such as e-mail logs, and possibly e-mail contents and the admin password. | 7.5 |
2006-08-05 | CVE-2006-4000 | Multiple vulnerability in Barracuda Networks Spam Firewall 3.3.01.001/3.3.03.053/3.3.03.055 Directory traversal vulnerability in cgi-bin/preview_email.cgi in Barracuda Spam Firewall (BSF) 3.3.01.001 through 3.3.03.053 allows remote authenticated users to read arbitrary files via a .. | 4.0 |