CVE-2012-5316
Barracuda Spam & Virus Firewall <4.0.1.009 - XSS
Title source: llmDescription
Multiple cross-site scripting (XSS) vulnerabilities in Barracuda Spam & Virus Firewall 600 Firmware 4.0.1.009 and earlier allow remote authenticated users to inject arbitrary web script or HTML via (1) Troubleshooting in the Trace route Device module or (2) LDAP Username in the LDAP Configuration module.
References (4)
Scores
EPSS
0.0020
EPSS Percentile
41.9%
Classification
CWE
CWE-79
Status
published
Affected Products (3)
barracudanetworks/spam_\&_virus_firewall_600_firmware
< 4.0.1.009
barracudanetworks/spam_\&_virus_firewall_600
n/a/n/a
Timeline
Published
Oct 08, 2012
Tracked Since
Feb 18, 2026