Knowledgebase

Barracuda's award-winning technical support is available 24x7 worldwide. Your time is valuable, which is why we will always connect you with a live person.


BNSEC-01263 Authenticated, non-persistent XSS vulnerability in Load Balancer

Solution #00006523

Scope:

Fixed in Load Balancer 4.2.2

Severity: Low

Description:

The product versions listed above contain an unresolved non persistent XSS vulnerability. Only an authenticated administrative user can trigger this attack.. The attack provides no privilege escalation.

To ensure maximum protection Barracuda Networks recommends that all customers upgrade to the latest generally available firmware and enable all definition updates.

Credits:

Benjamin Bidner,Ebrahim Hegazy,Jon of Bitquark,Justin Steven

Link to this page:

http://www.barracuda.com/kb?id=501600000013gvr