Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | |||
Test Kennung: | 1.3.6.1.4.1.25623.1.0.902402 |
Kategorie: | Web application abuses |
Titel: | Movable Type Multiple Vulnerabilities |
Zusammenfassung: | This host is running movable type and is prone to multiple; vulnerabilities. |
Beschreibung: | Summary: This host is running movable type and is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws are caused by input validation errors related to 'mt:AssetProperty' and 'mt:EntryFlag' tags and in dynamic publishing error messages, which could be exploited to conduct SQL injection or cross site scripting attacks. Vulnerability Impact: Successful exploitation will allow attackers to gain knowledge of sensitive information or inject SQL queries. Affected Software/OS: Movable Type version 4.x before 4.35 and 5.x before 5.04 Solution: Upgrade Movable Type to 4.35 and 5.04 or later. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C |
Querverweis: |
BugTraq ID: 45380 BugTraq ID: 45383 BugTraq ID: 45250 BugTraq ID: 45253 Common Vulnerability Exposure (CVE) ID: CVE-2010-3921 http://jvn.jp/en/jp/JVN36673836/index.html http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000060.html http://www.securitytracker.com/id?1024833 http://secunia.com/advisories/42539 http://www.vupen.com/english/advisories/2010/3145 Common Vulnerability Exposure (CVE) ID: CVE-2010-3922 http://jvn.jp/en/jp/JVN78536512/index.html http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000061.html Common Vulnerability Exposure (CVE) ID: CVE-2010-4509 http://www.securityfocus.com/bid/45383 XForce ISS Database: movable-type-multiple-unspec(64130) https://exchange.xforce.ibmcloud.com/vulnerabilities/64130 Common Vulnerability Exposure (CVE) ID: CVE-2010-4511 http://www.securityfocus.com/bid/45380 http://osvdb.org/69751 XForce ISS Database: movable-type-unspecified(64129) https://exchange.xforce.ibmcloud.com/vulnerabilities/64129 |
Copyright | Copyright (C) 2011 Greenbone Networks GmbH |
Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten. |