DSA-2263-2 movabletype-opensource -- severalID: oval:org.secpod.oval:def:600678 | Date: (C)2012-01-30 (M)2022-10-10 |
Class: PATCH | Family: unix |
Advisory DSA 2363-1 did not include a package for the Debian 5.0 "Lenny" suite at that time. This update adds that package. The original advisory text follows. It was discovered that Movable Type, a weblog publishing system, contains several security vulnerabilities: A remote attacker could execute arbitrary code in a logged-in users" web browser. A remote attacker could read or modify the contents in the system under certain circumstances.
Platform: |
Debian 5.0 |
Debian 6.0 |
Product: |
movabletype-opensource |