srs
-------- Original Message -------- Subject: new FormMailish bug - in Movable Type Date: Wed, 26 Nov 2003 11:44:50 -0800 From: [EMAIL PROTECTED] (Justin Mason)
A bug in 'mt-send-entry.cgi': it takes form input and uses that either in the headers of the sendmail'd message. Multiple Tos and newline injection are possible. Apparently it's trivial to exploit, and is being exploited in the wild right now.
http://www.zopenewbies.net/archives/2003/0125.html http://www.movabletype.org/support/index.php?act=ST&f=14&t=31153&st=0&#entry140558
Bear in mind, Movable Type is *the* top weblogging software out there. There are indexes of all weblogs known. It's trivial for a spammer to crawl those lists and spam via that script on all the weblogs found running MT.
Given the number of MT installs, I think this could be more widespread than FormMail. :(
--j.
------------------------------------------------------- This SF.net email is sponsored by: SF.net Giveback Program. Does SourceForge.net help you be more productive? Does it help you create better code? SHARE THE LOVE, and help us help YOU! Click Here: http://sourceforge.net/donate/ _______________________________________________ linux-india-help mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/linux-india-help
