Directory traversal vulnerability in img.pl in Barracuda Spam Firewall running firmware 3.1.16 and 3.1.17 allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter.
Software | From | Fixed in |
---|---|---|
barracuda_networks / barracuda_spam_firewall | 3.1.16 | 3.1.16.x |
barracuda_networks / barracuda_spam_firewall | 3.1.17 | 3.1.17.x |