Barracuda Load Balancer v4.2.2 and earlier
Secdef 2.1.11419 contains fixes for an unauthenticated non-persistent XSS in the products and versions listed above. Successful exploitation of the vulnerability requires that the attacker deliver the attack using a specially crafted URL. The attack will persist in the URL until the victim authenticates at which time the payload will be executed.
For maximum protection, Barracuda Networks recommends that all customers ensure that their attack and security definitions are set to On and to upgrade to the latest generally available release of the firmware and security definitions.
COCONUT STMIK Lab
Link to this page: