NVD

Id
23279  
Name
CVE-2015-0845  
Description
Format string vulnerability in Movable Type Pro, Open Source, and Advanced before 5.2.13 and Pro and Advanced 6.0.x before 6.0.8 allows remote attackers to execute arbitrary code via vectors related to localization of templates.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-19  
Published
2015-04-17  
Modified Date
2015-10-09  
Seq
2015-0845  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
123650 23279 CVE-2015-0845 DSA-3227  View
123651 23279 CVE-2015-0845 1032153  View
123652 23279 CVE-2015-0845 https://movabletype.org/news/2015/04/movable_type_608_and_5213_released_to_close_security_vulnera.html  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
7065 JVNDB-2015-002385 複数の Movable Type 製品におけるフォーマットストリングの脆弱性 Movable Type Pro、Movable Type Open Source および Movable Type Advanced には、フォーマットストリングの脆弱性が存在します。 CVE-2015-0845 78056 CVE-2015-0845 23279 7.5 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-002385.html 2015-04-14 2015-04-21 View