Test ID:	1.3.6.1.4.1.25623.1.0.100847
Category:	Web application abuses
Title:	Barracuda Networks Multiple Products Directory Traversal Vulnerability
Summary:	Multiple Barracuda Networks products are prone to a directory; traversal vulnerability because it fails to sufficiently sanitize user-supplied input.
Description:	Summary: Multiple Barracuda Networks products are prone to a directory traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Vulnerability Impact: A remote attacker can exploit this vulnerability using directory traversal characters ('../') to access files that contain sensitive information that can aid in further attacks. Affected Software/OS: Barracuda IM Firewall 3.4.01.004 and earlier Barracuda Link Balancer 2.1.1.010 and earlier Barracuda Load Balancer 3.3.1.005 and earlier Barracuda Message Archiver 2.2.1.005 and earlier Barracuda Spam & Virus Firewall 4.1.2.006 and earlier Barracuda SSL VPN 1.7.2.004 and earlier Barracuda Web Application Firewall 7.4.0.022 and earlier Barracuda Web Filter 4.3.0.013 and earlier Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Copyright	Copyright (C) 2010 Greenbone Networks GmbH

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.