Barracuda Icon
Chat

Hi, I'm Logan.
How may I help you?

How may I help you?

Click below to send us a Message

Support

A global support network of experts.
At your service.

Back to Knowledgebase

BNSEC-02067: Non-Persistent XSS in Barracuda Firewall v6.1.5

Solution #00006644

Scope:

Barracuda Firewall v6.1.5 and earlier (resolved in v6.1.5)

Severity: Low

Description:

The product version(s) listed above contained a non-persistent XSS vulnerability. Successful exploitation of the vulnerability requires that the attacker authenticate to the device as an administrator and specially craft an attack URL using the current login session to attack himself. This vulnerability is not exploitable in practice.

For maximum protection, Barracuda Networks recommends that all customers ensure that their attack and security definitions are set to On and to upgrade to the latest generally available release of the firmware and security definitions.

Credits:

Vulnerability Lab

Link to this page:

http://www.barracuda.com/kb?id=501600000013oia