Movable Typeに複数の脆弱性とのこと。

Some vulnerabilities have been reported in Movable Type, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.

1) Certain unspecified input is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

2) A vulnerability is caused due to an unspecified error related to mixed character encoding. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

Successful exploitation reportedly requires the victim to use certain browsers (e.g. Internet Explorer 6).

3) The application allows users to perform certain actions via HTTP requests without performing any validity checks to verify the request. This can be exploited if a user is tricked into visiting a malicious website.

The vulnerabilities are reported in Movable Type 3.36, 4.01 and 4.13, Movable Type Enterprise 1.55, and Movable Type Community Solution 1.51.

Security Advisory SA31806 - Movable Type Multiple Vulnerabilities - Secunia

今度はMBSDか！

Provided and/or discovered by:
JVN credits Gaku Mochizuki of Mitsui Bussan Secure Directions, Inc.

Security Advisory SA31807 - Movable Type Multiple Vulnerabilities - Secunia

関連URL

• ブログ作成の「Movable Type」にXSSの脆弱性 - ITmedia エンタープライズ
• JVN#30385652: Movable Type におけるクロスサイトスクリプティングの脆弱性