Movable Type Unspecified Security Bypass Vulnerability Network Vulnerability

Summary

Movable Type is prone to an unspecified security-bypass vulnerability. Very little is known about this issue at this time (06.01.2010). We will update this BID as more information emerges. This issue affects versions prior to 4.27 and 5.01.

Solution

The vendor has released fixes. Please see the references for more information.

References

http://jvn.jp/en/jp/JVN09872874/index.html
http://www.movabletype.jp/blog/movable_type_501.html
http://www.movabletype.org/
http://www.securityfocus.com/bid/37638

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Apache Tomcat SecurityConstraints Security Bypass Vulnerability
Allaire JRun directory browsing vulnerability
Adobe ColdFusion Unspecified Information Disclosure Vulnerability
Apache Tomcat Information Disclosure Vulnerability
Apache Subversion Module Metadata Accessible

Take action and discover your vulnerabilities