CVE-2013-0209
N/A
N/A
Summary
lib/MT/Upgrade.pm in mt-upgrade.cgi in Movable Type 4.2x and 4.3x through 4.38 does not require authentication for requests to database-migration functions, which allows remote attackers to conduct eval injection and SQL injection attacks via crafted parameters, as demonstrated by an eval injection attack against the core_drop_meta_for_table function, leading to execution of arbitrary Perl code.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.sec-1.com/blog/?p=402
- http://www.movabletype.org/2013/01/movable_type_438_patch.html
- http://www.sec-1.com/blog/wp-content/uploads/2013/01/movabletype_upgrade_exec.rb_.txt
- http://openwall.com/lists/oss-security/2013/01/22/3
References
- http://www.sec-1.com/blog/?p=402
- http://www.movabletype.org/2013/01/movable_type_438_patch.html
- http://www.sec-1.com/blog/wp-content/uploads/2013/01/movabletype_upgrade_exec.rb_.txt
- http://openwall.com/lists/oss-security/2013/01/22/3
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.