CVE Vulnerabilities

CVE-2013-0209

Improper Authentication

Published: Jan 23, 2013 | Modified: Jan 29, 2013
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

lib/MT/Upgrade.pm in mt-upgrade.cgi in Movable Type 4.2x and 4.3x through 4.38 does not require authentication for requests to database-migration functions, which allows remote attackers to conduct eval injection and SQL injection attacks via crafted parameters, as demonstrated by an eval injection attack against the core_drop_meta_for_table function, leading to execution of arbitrary Perl code.

Weakness

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Affected Software

Name Vendor Start Version End Version
Movable_type Sixapart 4.33 4.33
Movable_type Sixapart 4.34 4.34
Movable_type Sixapart 4.24 4.24
Movable_type Sixapart 4.291 4.291
Movable_type Sixapart 4.291 4.291
Movable_type Sixapart 4.23 4.23
Movable_type Sixapart 4.36 4.36
Movable_type Sixapart 4.261 4.261
Movable_type Sixapart 4.35 4.35
Movable_type Sixapart 4.29 4.29
Movable_type Sixapart 4.292 4.292
Movable_type Sixapart 4.26 4.26
Movable_type Sixapart 4.38 4.38
Movable_type Sixapart 4.37 4.37
Movable_type Sixapart 4.292 4.292
Movable_type Sixapart 4.29 4.29
Movable_type Sixapart 4.21 4.21
Movable_type Sixapart 4.291 4.291
Movable_type Sixapart 4.29 4.29
Movable_type Sixapart 4.27 4.27
Movable_type Sixapart 4.28 4.28
Movable_type Sixapart 4.32 4.32
Movable_type Sixapart 4.28 4.28
Movable_type Sixapart 4.28 4.28
Movable_type Sixapart 4.25 4.25
Movable_type Sixapart 4.31 4.31
Movable_type Sixapart 4.361 4.361
Movable_type Sixapart 4.292 4.292
Movable_type Sixapart 4.22 4.22

Potential Mitigations

References