Join our webinar on email and DLP:
https://www.brighttalk.com/webcast/7455/64955
If you need help with this exploit and
resoliving it for your network, contact us at:
http://www.gti1.com/about-us/contact-us/
2. • Barracuda Spam and Virus Firewall
• Barracuda Web Filter
• Barracuda Message Archiver
• Barracuda Web Application Firewall
• Barracuda Link Balancer
• Barracuda Load Balancer
• Barracuda SSL VPN
• ALL VERSIONS
Systems Effected
3. • Eight default accounts exist
• Used for diagnose by Barracuda on an
appliance
• They cannot be disabled
• Passwords cannot be changed
Issue
4. • Account passwords can be broken with
dictionary attack
• The product account can used to create
new users with administrative privileges
• Root access can be obtained
Exploits
5. • Barracuda currently working on patch
• Until then, make sure to load security
definition 2.0.5 (It’s possible the root
account could still be cracked)
• Prevents unauthorized users from SSH to
appliance
Fix
6. • We can help get you up to date
• Visit us at
http://www.gti1.com/about-us/contact-us/
• Join our upcoming webinar (URL below)
to see how we can help with DLP / Email
Need Help?
Notas do Editor
Email is the #1 channel for lost data in the enterprise, and the most widely used! Email is essential to every aspect of business. It is a constant balancing act for security professionals to 1) make email usable and 2) make email secure.With the rise of regulations in almost every industry, each business has to resolve the challenge of securing email effectively and affordably. This webinar will go through Email Data Loss Prevention strategies that are you can implement today without slowing down your network or adding to your management overhead.Lets Talk - AgendaWhat is DLP?Why Do You Need DLP?Regulations You FaceCase Study: IronPort and DLPHow To Evaluate DLPWhy Galaxy TechnologiesNext Steps