N/A

Barracuda Web Filter 7.x and 8.x before 8.1.0.005, when SSL Inspection is enabled, uses the same root Certification Authority certificate across different customers' installations, which makes it easier for remote attackers to conduct man-in-the-middle attacks against SSL sessions by leveraging the certificate's trust relationship.

N/A

N/A

Barracuda Networks Web Filter 安全漏洞

Barracuda Networks Web Filter是美国梭子鱼（Barracuda Networks）公司的一款Web安全网关。该网关支持内容过滤、高级策略、网络威胁防护。 Barracuda Networks Web Filter 7.x版本和8.1.0.005之前8.x版本中存在安全漏洞，该漏洞源于程序启用SSL Inspection时，在不同的用户安装中使用相同的Certification Authority根证书。远程攻击者可利用该漏洞对SSL会话实施中间人攻击。

N/A

N/A