Description: Some vulnerabilities have been reported in Movable Type, which can be exploited by malicious people to bypass certain security restrictions and conduct cross-site scripting attacks.
1) Certain malformed input is not properly sanitised before being returned to a user. This can be exploited to execute HTML and script code in a user's browser session in context of an affected site.
Note: This may affect Internet Explorer only.
2) An unspecified error exists within the handling of the "MTCommentPreviewIsStatic" tag, which can be exploited to gain access to the comment entry screen.
The vulnerabilities are reported in versions prior to 3.34 beta.
Solution: The vulnerabilities are fixed in the latest version of 3.34 beta.
Provided and/or discovered by: 1) teracci2002
2) Reported by the vendor.
Changelog: 2007-02-02: Added CVE reference.
2007-06-26: Added CVE reference.
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.