Vulnerabilities > CVE-2009-0752 - Unspecified vulnerability in Sixapart Movable Type

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

sixapart

critical

NVD

Published: 2009-03-03

Updated: 2009-03-04

Summary

Unspecified vulnerability in Movable Type Pro and Community Solution 4.x before 4.24 has unknown impact and attack vectors, possibly related to the password recovery mechanism.

Vulnerable Configurations

Part	Description	Count
Application	Sixapart Sixapart Movable Type 4.0 Sixapart Movable Type 4.01 Sixapart Movable Type 4.1 Sixapart Movable Type 4.2 Sixapart Movable Type 4.12 Sixapart Movable Type 4.21 Sixapart Movable Type 4.23	16

References

http://www.movabletype.com/blog/2009/02/movable-type-424-get-updated-with-better-password-recovery.html