November 27, 2003

Movable Type Security Hole

Filed under: digital — mhoye @ 3:17 pm

If you use Movable Type, you need to read this and this right away, and then you need to get on the horn to your webmaster instantly and tell them they’ve got a big fucking problem on their hands.

The short summary: Movable Type can be turned into an open spam relay if you
poke one of their default scripts the right way, and this is already being exploited in the wild.

Shaver, wise and powerful, has instantly fixed the problem on this machine, but if you’ve got your own MT stuff running, you need to either fix it right now or phone somebody who can.

Quick fix: chmod 000 mt-send-entry.cgi


  1. Plugged. Thanks for pointing this out, Mike.

    Comment by Mike B — November 27, 2003 @ 4:48 pm

  2. Honour to serve, etc.

    Comment by Mike Hoye — November 27, 2003 @ 6:30 pm

  3. Another quick fix:

    rm mt-send-entry.cgi

    Unless you’ve deliberately enable this feature, you’ll never notice.

    Comment by David — November 28, 2003 @ 3:53 am

  4. Yeah, I put that up before I’d figured out if it was patchable, or if a patch was going to be issued or whatever.

    Comment by Mike Hoye — November 28, 2003 @ 3:01 pm

  5. Thanks for the heads-up.

    Comment by Kenneth G. Cavness — December 1, 2003 @ 12:41 pm

RSS feed for comments on this post.

Sorry, the comment form is closed at this time.

Powered by WordPress