It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda Campus Help Center / Reference

BNSEC-02857 unauthenticated, account takeover vulnerability in SignNow

  • Type: Knowledgebase
  • Date changed: 2 years ago

Solution #00006807

Scope:

Fixed in SignNow 2014-02-06

Severity: High

Description:

The SignNow team patched a reported vulnerability that could allow an attacker to capture the confirmation code required to reset an arbitrary account password. No customer passwords were compromised by this vulnerability. Barracuda is not aware of actual use of this exploit against any customer. No further action is required by customers to address this issue.

To ensure maximum protection Barracuda Networks recommends that all customers upgrade to the latest generally available firmware and enable all definition updates.

Credits:

Jai Vussonji,Nikhil Srivastav

Link to this page:

https://campus.barracuda.com/solution/5016000000141IQAAY