CVE-2011-5114: XSS
First published: Thu Aug 23 2012(Updated: )
Multiple cross-site scripting (XSS) vulnerabilities in the Authoritative DNS - DNS Zones page in Barracuda Link Balancer 330 Firmware 1.3.2.005 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) zoneid or (2) scope parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Barracuda Link Balancer | =1.3.2.005 | |
| Barracuda Link Balancer | =330 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2011-5114?
CVE-2011-5114 is considered to have a medium severity due to the potential for remote attackers to execute arbitrary web scripts or HTML.
How do I fix CVE-2011-5114?
To fix CVE-2011-5114, upgrade to a later version of Barracuda Link Balancer firmware that addresses these cross-site scripting vulnerabilities.
What are the affected products by CVE-2011-5114?
CVE-2011-5114 affects Barracuda Link Balancer 330 with firmware versions 1.3.2.005 and earlier.
What are the potential impacts of CVE-2011-5114?
The impacts of CVE-2011-5114 include the possibility of remote code execution via injected scripts, compromising the security of affected systems.
Can CVE-2011-5114 be exploited without authentication?
Yes, CVE-2011-5114 can be exploited by unauthenticated remote attackers, making it a significant security risk.
- collector/nvd-historical
- agent/references
- agent/type
- agent/softwarecombine
- agent/weakness
- agent/author
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/barraguard
- canonical/barracuda link balancer
- version/barracuda link balancer/1.3.2.005
- version/barracuda link balancer/330