Directory Traversal Vulnerability in Barracuda Spam Firewall
CVE-2006-4000

Currently unrated

Key Information:

Vendor

Barracuda Networks

Status
Barracuda Spam Firewall
Vendor
CVE Published:
5 August 2006

What is CVE-2006-4000?

A directory traversal vulnerability in the cgi-bin/preview_email.cgi script of Barracuda Spam Firewall versions 3.3.01.001 to 3.3.03.053 enables remote authenticated users to access arbitrary files on the server. By manipulating the file parameter with a '..' (dot dot) sequence, attackers can exploit this flaw to disclose sensitive information that should be restricted, potentially compromising system integrity and user privacy.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.vupen.com/english/advisories/2006/3104
vdb-entryx_refsource_VUPEN
http://secunia.com/advisories/21258
third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/19276
vdb-entryx_refsource_BID

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.