PublicDate: 2008-09-15 15:14:00 UTC
Candidate: CVE-2008-4079
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4079
Description:
 Cross-site scripting (XSS) vulnerability in Movable Type (MT) 4.x through
 4.20, and 3.36 and earlier; Movable Type Enterprise 4.x through 4.20, and
 1.54 and earlier; and Movable Type Community Solution allows remote
 attackers to inject arbitrary web script or HTML via unspecified vectors.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_movabletype-opensource:
upstream_movabletype-opensource: released (4.2~rc5-1)
dapper_movabletype-opensource: DNE
feisty_movabletype-opensource: DNE
gutsy_movabletype-opensource: DNE
hardy_movabletype-opensource: DNE
intrepid_movabletype-opensource: needed (reached end-of-life)
jaunty_movabletype-opensource: not-affected (4.2.3-1)
karmic_movabletype-opensource: not-affected
devel_movabletype-opensource: not-affected