CVE-2005-3102

Properties

Published:
27.09.2005
Updated:
21.09.2006
Patch available:
Severity:
Low
  • CVSS vector:
    (AV:R/AC:L/Au:NR/C:N/I:C/A:N/B:N) Approximated
    Product:
    Six Apart: Movable Type

    Vulnerability description

    The administrative interface in Movable Type allows attackers to upload files with arbitrary extensions under the web root.

    References:

    SECUNIA: http://secunia.com/advisories/16899
    FULLDISC: http://archives.neohapsis.com/archives/fulldisclosure/2005-11/0091.html