|
|
CVE Reference: CVE-2005-4690 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2005-4690 |
|
|
Description: Six Apart Movable Type 3.16 allows local users with blog-creation privileges to create or overwrite arbitrary files of certain types (such as HTML and image files) by selecting an arbitrary directory as a blog's top-level directory. NOTE: this issue can be used in conjunction with CVE-2005-3102 to create or overwrite arbitrary files of all types. |
|
|
CVE Status: Candidate |
|
|
References: SAID Secunia Advisory: SA16899 FULLDISC http://archives.neohapsis.com/archives/fulldisclosure/2005-11/0091.html BID 15302 |
|
| Return to the previous page. |
