Barracuda Web App Firewall / Load Balancer Remote Root
Posted by deepcore on July 24, 2016 – 5:18 am
This Metasploit module exploits a remote command execution vulnerability in the Barracuda Web App Firewall Firmware version 8.0.1.007 and below and Load Balancer Firmware versions 5.4.0.004 and below by exploiting a vulnerability in the web administration interface. By sending a specially crafted request it’s possible to inject system commands while escalating to root do to relaxed sudo configurations on the appliances.
Post a reply
You must be logged in to post a comment.