Movable Type 'publish post' Security Bypass Vulnerability

Bugtraq ID: 33133
Class: Access Validation Error
CVE: CVE-2008-5846
Remote: Yes
Local: No
Published: Jan 06 2009 12:00AM
Updated: Jan 06 2009 06:52PM
Credit: The vendor disclosed this issue.
Vulnerable: Movable Type Movable Type Open Source 4
Movable Type Movable Type Enterprise 4.22
Movable Type Movable Type Enterprise 4
Movable Type Movable Type Enterprise 1.56
Movable Type Movable Type Enterprise 1.55
Movable Type Movable Type Enterprise 1.5
Movable Type Movable Type Enterprise 1.03
Movable Type Movable Type Enterprise 1.02
Movable Type Movable Type Enterprise 1.01
Movable Type Movable Type Community Solution 4.22
Movable Type Movable Type Community Solution 4
Movable Type Movable Type Community Solution 1.51
Movable Type Movable Type Commercial 4.22
Movable Type Movable Type 3.17
Movable Type Movable Type 3.16
Movable Type Movable Type 3.2
Movable Type Movable Type 2.63
Movable Type Movable Type 2.0
Movable Type Movable Type 4.22
Movable Type Movable Type 4.21
Movable Type Movable Type 4.13
Movable Type Movable Type 4.01
Movable Type Movable Type 4
Movable Type Movable Type 3.38
Movable Type Movable Type 3.36
Movable Type Movable Type 3.34.b1
Movable Type Movable Type 3.34
Movable Type Movable Type 3.33
Movable Type Movable Type 3.32
Movable Type Movable Type 3.31
Movable Type Movable Type 3.3
Movable Type Movable Type 3
Not Vulnerable: Movable Type Movable Type Open Source 4.23
Movable Type Movable Type Enterprise 4.23
Movable Type Movable Type Community Solution 4.23
Movable Type Movable Type 4.23


 

Privacy Statement
Copyright 2010, SecurityFocus