Movable Type Pro, Open Source, and Advanced before 5.2.12 and Pro and
Advanced 6.0.x before 6.0.7 does not properly use the Perl Storable::thaw
function, which allows remote attackers to include and execute arbitrary
local Perl files and possibly execute arbitrary code via unspecified
vectors.
www.openwall.com/lists/oss-security/2015/02/12/2
launchpad.net/bugs/cve/CVE-2015-1592
movabletype.org/news/2015/02/movable_type_607_and_5212_released_to_close_security_vulnera.html
nvd.nist.gov/vuln/detail/CVE-2015-1592
security-tracker.debian.org/tracker/CVE-2015-1592
www.cve.org/CVERecord?id=CVE-2015-1592