Vulnerabilities > CVE-2005-4689

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

NVD

Published: 2005-12-31

Updated: 2024-11-21

Summary

Six Apart Movable Type 3.16 stores account names and password hashes in a cookie, which allows remote attackers to login to an account by sniffing the cookie.

Vulnerable Configurations

Part	Description	Count
Application	Six_Apart SIX Apart Movable Type 3.16	1

References

http://archives.neohapsis.com/archives/fulldisclosure/2005-11/0091.html
http://archives.neohapsis.com/archives/fulldisclosure/2005-11/0091.html
http://www.sixapart.com/movabletype/docs/3.2/h_changelog/3_2.html
http://www.sixapart.com/movabletype/docs/3.2/h_changelog/3_2.html

Vulnerabilities > CVE-2005-4689 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2005-4689"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2005-4689