CVE-2005-2848

EXPLOITED

Barracuda Spam Firewall <3.1.17 - Path Traversal

Title source: llm

Exploitation Summary

CVE-2005-2848 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including Nicolas Gregoire.

AI-analyzed exploit summary This Metasploit module exploits a command injection vulnerability in Barracuda Spam Firewall appliances prior to version 3.1.18 via the img.pl CGI script. It allows remote command execution by manipulating the 'f' parameter to execute arbitrary shell commands.

Description

Directory traversal vulnerability in img.pl in Barracuda Spam Firewall running firmware 3.1.16 and 3.1.17 allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Nicolas Gregoire · webappscgi

https://www.exploit-db.com/exploits/1236

View Code ZIP pw:eip

This Metasploit module exploits a command injection vulnerability in Barracuda Spam Firewall appliances prior to version 3.1.18 via the img.pl CGI script. It allows remote command execution by manipulating the 'f' parameter to execute arbitrary shell commands.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Barracuda Spam Firewall < 3.1.18

No auth needed

Prerequisites: Network access to the target's img.pl script (typically on port 8000)

MITRE ATT&CK