Directory traversal vulnerability in img.pl in Barracuda Spam Firewall running firmware 3.1.16 and 3.1.17 allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter.
References
Link | Resource |
---|---|
http://securiweb.net/wiki/Ressources/AvisDeSecurite/2005.1 | Exploit Patch Vendor Advisory |
http://www.securityfocus.com/bid/14710 | Exploit Patch |
http://www.securitytracker.com/alerts/2005/Sep/1014837.html | Patch Vendor Advisory |
http://secunia.com/advisories/16683/ | Patch Vendor Advisory |
http://marc.info/?l=bugtraq&m=112560044813390&w=2 | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/22120 |
Configurations
Configuration 1 (hide)
|
Information
Published : 2005-09-08 03:03
Updated : 2017-07-10 18:33
NVD link : CVE-2005-2848
Mitre link : CVE-2005-2848
JSON object : View
CWE
Products Affected
barracuda_networks
- barracuda_spam_firewall