It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda Campus Help Center / Reference

BNSEC-00977 unauthenticated, insufficient authorization vulnerability in SSL VPN

  • Type: Knowledgebase
  • Date changed: 2 years ago

Solution #00006772

Scope:

Fixed in SSL VPN 2.5.1.2

Severity: High

Description:

The SSLVPN team patched the GA firmware version listed above to address a vulnerability which allowed an unauthenticated user to set an arbitrary Java system variable to an attacker controlled value.

To ensure maximum protection Barracuda Networks recommends that all customers upgrade to the latest generally available firmware and enable all definition updates.

Credits:

S. Viehboeck

Link to this page:

https://campus.barracuda.com/solution/501600000013yQlAAI