It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda Campus Help Center / Reference

BNSEC-00739 Unauthenticated, persistent XSS vulnerability in the Barracuda Phone System

  • Type: Knowledgebase
  • Date changed: 2 years ago

Solution #00006582


Fixed in Barracuda Phone System firmware 3.0.004

Severity: Medium


The firmware update listed above contains a fix for an unauthenticated non-persistent XSS in the Barracuda Phone System. Successful exploitation of the vulnerability requires that the attacker convince an authenticated administrative user to follow a specially crafted link or redirect containing the malicious code.

To ensure maximum protection Barracuda Networks recommends that all customers upgrade to the latest generally available firmware and enable all definition updates.


Mateusz Goik

Link to this page:

*** Note that the Barracuda Phone System was formerly known as the Cudatel Communication Server