CVE-2011-5114

Name of the Vulnerable Software and Affected Versions Barracuda Link Balancer 330 Firmware versions 1.3.2.005 and earlier

Description The issue concerns multiple cross-site scripting (XSS) vulnerabilities in the Authoritative DNS - DNS Zones page. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via the zoneid or scope parameter.

Recommendations For Barracuda Link Balancer 330 Firmware versions 1.3.2.005 and earlier, consider restricting access to the Authoritative DNS - DNS Zones page until a fix is available. As a temporary workaround, avoid using the zoneid and scope parameters in the affected page to minimize the risk of exploitation.