cbcvebase.
CVE-2006-4001
published 2006-08-05

CVE-2006-4001: Login.pm in Barracuda Spam Firewall (BSF) 3.3.01.001 through 3.3.03.053 contains a hard-coded password for the guest account, which allows remote attackers to…

PriorityP433high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
1.82%
76.0th percentile
Login.pm in Barracuda Spam Firewall (BSF) 3.3.01.001 through 3.3.03.053 contains a hard-coded password for the guest account, which allows remote attackers to read sensitive information such as e-mail logs, and possibly e-mail contents and the admin password.

Affected

3 ranges
VendorProductVersion rangeFixed in
barracuda_networksbarracuda_spam_firewall
barracuda_networksbarracuda_spam_firewall
barracuda_networksbarracuda_spam_firewall
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.