Sign-up

ID

VAR-201208-0659


CVE

CVE-2011-5114


TITLE

Barracuda Link Balancer 330 firmware Vulnerable to cross-site scripting

Trust: 0.8

sources: JVNDB: JVNDB-2012-003865

DESCRIPTION

Multiple cross-site scripting (XSS) vulnerabilities in the Authoritative DNS - DNS Zones page in Barracuda Link Balancer 330 Firmware 1.3.2.005 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) zoneid or (2) scope parameter. Barracuda Link Balancer Series Firmware is prone to a cross-site scripting vulnerability

Trust: 1.98

sources: NVD: CVE-2011-5114 // JVNDB: JVNDB-2012-003865 // BID: 73538 // VULHUB: VHN-53059

AFFECTED PRODUCTS

vendor:barraguardmodel:barracuda link balancer seriesscope:eqversion:1.3.2.005

Trust: 1.9

vendor:barracudamodel:link balancer seriesscope:lteversion:1.3.2.005

Trust: 0.8

sources: BID: 73538 // JVNDB: JVNDB-2012-003865 // CNNVD: CNNVD-201208-453 // NVD: CVE-2011-5114

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2011-5114
value: MEDIUM

Trust: 1.0

NVD: CVE-2011-5114
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201208-453
value: MEDIUM

Trust: 0.6

VULHUB: VHN-53059
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2011-5114
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-53059
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-53059 // JVNDB: JVNDB-2012-003865 // CNNVD: CNNVD-201208-453 // NVD: CVE-2011-5114

PROBLEMTYPE DATA

problemtype:CWE-79

Trust: 1.9

sources: VULHUB: VHN-53059 // JVNDB: JVNDB-2012-003865 // NVD: CVE-2011-5114

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201208-453

TYPE

XSS

Trust: 0.6

sources: CNNVD: CNNVD-201208-453

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2012-003865

PATCH
title:Barracuda Link Balancer 330url:http://www.barraguard.com/330.asp
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2012-003865

EXTERNAL IDS
db:NVDid:CVE-2011-5114
Trust: 2.8
db:SECTRACKid:1026283
Trust: 2.0
db:JVNDBid:JVNDB-2012-003865
Trust: 0.8
db:CNNVDid:CNNVD-201208-453
Trust: 0.7
db:BIDid:73538
Trust: 0.4
db:VULHUBid:VHN-53059
Trust: 0.1
sources:
            
            
            VULHUB: VHN-53059 // 
            
            
            
            BID: 73538 // 
            
            
            
            JVNDB: JVNDB-2012-003865 // 
            
            
            
            CNNVD: CNNVD-201208-453 // 
            
            
            
            NVD: CVE-2011-5114

REFERENCES
url:http://www.vulnerability-lab.com/get_content.php?id=33
Trust: 2.0
url:http://www.securitytracker.com/id?1026283
Trust: 2.0
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2011-5114
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2011-5114
Trust: 0.8
sources:
            
            
            VULHUB: VHN-53059 // 
            
            
            
            BID: 73538 // 
            
            
            
            JVNDB: JVNDB-2012-003865 // 
            
            
            
            CNNVD: CNNVD-201208-453 // 
            
            
            
            NVD: CVE-2011-5114

CREDITS
Unknown
Trust: 0.3
sources:
            
            
            BID: 73538

SOURCES
db:VULHUBid:VHN-53059
db:BIDid:73538
db:JVNDBid:JVNDB-2012-003865
db:CNNVDid:CNNVD-201208-453
db:NVDid:CVE-2011-5114

LAST UPDATE DATE
2025-04-11T23:16:40.521000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-53059date:2012-08-24T00:00:00
db:BIDid:73538date:2012-08-23T00:00:00
db:JVNDBid:JVNDB-2012-003865date:2012-08-27T00:00:00
db:CNNVDid:CNNVD-201208-453date:2012-08-24T00:00:00
db:NVDid:CVE-2011-5114date:2025-04-11T00:51:21.963

SOURCES RELEASE DATE
db:VULHUBid:VHN-53059date:2012-08-23T00:00:00
db:BIDid:73538date:2012-08-23T00:00:00
db:JVNDBid:JVNDB-2012-003865date:2012-08-27T00:00:00
db:CNNVDid:CNNVD-201208-453date:2012-08-24T00:00:00
db:NVDid:CVE-2011-5114date:2012-08-23T20:55:03.657