Home > Uncategorized > Barracuda Spam Firewall Remote Compromise

Barracuda Spam Firewall Remote Compromise

April 4th, 2006

The Barracuda Spam Firewall is an integrated hardware and software solution for complete protection of your email server. It provides a powerful, easy to use, and affordable solution to eliminating spam and virus from your organization.

When building a special LHA archive with long filenames in it, it is possible to overflow a buffer on the stack used by the program and seize control of the program. Since this component is used when scanning an incoming email, remote compromise is possible by sending a simple email with the specially crafted LHA archive attached to the Barracuda Spam Firewall. Original Advisory

When building a special ZOO archive with long filenames in it, it is possible to overflow a buffer on the stack used by the program and seize control of the program. Since this component is used when scanning an incoming email, remote compromise is possible by sending a simple email with the specially crafted ZOO archive attached to the Barracuda Spam Firewall. Original Advisory

You do NOT need to have remote administration access (on port 8000) for successfull exploitation.

Uncategorized

Comments are closed.