Remote Command Execution Vulnerability in Barracuda Spam Firewall
CVE-2005-2847

Currently unrated

Key Information:

Vendor

Barracuda Networks

Status
Barracuda Spam Firewall
Vendor
CVE Published:
8 September 2005

What is CVE-2005-2847?

The Barracuda Spam Firewall, specifically firmware versions 3.1.16 and 3.1.17, has a vulnerability that allows remote attackers to execute arbitrary commands. This is accomplished through the improper handling of shell metacharacters in the 'f' parameter of the img.pl script, which can result in unauthorized command execution and potentially compromise the system.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securityfocus.com/bid/14712
vdb-entryx_refsource_BID
http://www.securitytracker.com/alerts/2005/Sep/1014837.html
vdb-entryx_refsource_SECTRACK
http://secunia.com/advisories/16683/
third-party-advisoryx_refsource_SECUNIA

EPSS Score

87% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.