Multiple Cross-Site Scripting Vulnerabilities in Barracuda Networks Products
CVE-2008-0971

Currently unrated

Key Information:

Vendor: Barracuda Networks
Status: Barracuda Load Balancer; Barracuda Message Archiver; Barracuda Spam Firewall; Barracuda Web Filter
Vendor: CVE Published:; 19 December 2008

🔔 Create Barracuda Networks Vulnerability Alert

What is CVE-2008-0971?

Barracuda Networks products, including the Spam Firewall and Message Archiver, contain multiple cross-site scripting vulnerabilities. These weaknesses stem from improper validation of user inputs in various components, which can allow remote attackers to inject arbitrary web scripts or HTML. Specifically, the vulnerabilities can be exploited via fields in Search Based Retention Policies, configurations, and error messages across the affected products. This can lead to unauthorized actions being performed on behalf of users, potentially compromising sensitive data and undermining web application integrity.

References

http://dcsl.ul.ie/advisories/03.htm

x_refsource_MISC

http://secunia.com/advisories/33164

third-party-advisoryx_refsource_SECUNIA

http://www.osvdb.org/50709

vdb-entryx_refsource_OSVDB

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 19, 2008
Vulnerability Reserved
Feb 25, 2008

JSON