It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda Campus Help Center / Reference

BNSEC-04117 authenticated, remotely exploitable, privilege escalation, code injection vulnerability in SSL VPN

  • Type: Knowledgebase
  • Date changed: 2 years ago

Solution #00006840

Scope:

Fixed in SSL VPN 2.5.0

Severity: High

Description:

The SSL VPN was vulnerable to an authenticated persistent Remote File Inclusion (RFI) attack resulting in escalated privileges. The vulnerability is fixed in the version listed above.

To ensure maximum protection Barracuda Networks recommends that all customers upgrade to the latest generally available firmware and enable all definition updates.

Credits:

Adam Chester

Link to this page:

https://campus.barracuda.com/solution/50160000001437FAAQ