Vulnerability Bulletins |
DSA-3227 movabletype-opensource - security update |
|
System information |
|
| Affected software | Debian |
Description |
|
|
John Lightsey discovered a format string injection vulnerability in thelocalisation of templates in Movable Type, a blogging system. Anunauthenticated remote attacker could take advantage of this flaw toexecute arbitrary code as the web server user. More info: https://www.debian.org/security/2015/dsa-3227 |
|
Standar resources |
|
| Property | Value |
| CVE | CVE-2015-0845 and DSA-3227. |
Version history |
||
| Version | Comments | Date |
| 1.0 | Advisory issued | 2015-04-16 |