Directory traversal vulnerability in cgi-bin/preview_email.cgi in Barracuda Spam Firewall (BSF) 3.3.01.001 up to and including 3.3.03.053 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the file parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
barracuda networks barracuda spam firewall 3.3.01.001 |
||
barracuda networks barracuda spam firewall 3.3.03.053 |
||
barracuda networks barracuda spam firewall 3.3.03.055 |