Lucene search
Japan Vulnerability NotesJVN:08369659HistoryJun 24, 2009 - 12:00 a.m.
JVN#08369659 Movable Type access restriction bypass vulnerability
2009-06-2400:00:00
Japan Vulnerability Notes
jvn.jp
15
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
EPSS
0.004
Percentile
75.1%
Movable Type, a web log system from Six Apart KK, contains a vulnerability that allows a remote attacker to bypass access restrictions.
Impact
A remote attacker may send unsolicited email to arbitrary addresses or view information stored in Movable Type.
Solution
Update the Software
Update to the latest version according to the information provided by the developer.
Products Affected
- Movable Type 4.25 Enterprise and earlier
- Movable Type 4.25 (includes Professional and Community Packs) and earlier
- Movable Type Commercial 4.25 (includes Professional Pack) and earlier
- Movable Type 4.25 (Open Source) and earlier
Related
nvd
nvd
CVE-2009-2481
2009-07-16 16:30:00
cvelist
cvelist
CVE-2009-2481
2009-07-16 16:00:00
prion
prion
Crlf injection
2009-07-16 16:30:00
cve
cve
CVE-2009-2481
2009-07-16 16:30:00
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
EPSS
0.004
Percentile
75.1%
Related for JVN:08369659