Sunday, January 27, 2013

Barracuda Appliances Have Exploitable Holes, Fixed By Firmware Updates

Barracuda Networks has released firmware updates that remove SSH backdoors in a number of their products and resolve a vulnerability in Barracuda SSL VPN that allows attackers to bypass access restrictions to download potentially insecure files, set new admins passwords, or even shut down the device. The backdoor accounts are present on in all available versions of Barracuda Spam and Virus Firewall, Web Filter, Message Archiver, Web Application Firewall, Link Balancer, Load Balancer, and SSL VPN appliances.

Read more: Slashdot
QR: Inline image 1

Posted via email from Jasper-Net