BLOG SOFTWARE HOUSE Six Apart has issued a fix for its popular blogging system Movable Type.
The firm alerted users to the release and almost but not quite admitted that it was fixing the flaws that led to the recent successful attack on the PBS.org web site.
In a post titled, Dear Movable Type customers, Nob Seki, president and CEO of Six Apart wrote, "You may have read reports that the website PBS.org was hacked and some sources claimed that a previously undiscovered security flaw in Movable Type 4 was to blame...
"Six Apart and our affiliates have been working closely with the Public Broadcasting System to learn how the hack was accomplished. We are continuously reviewing our code base to protect our customers from any vulnerabilities in Movable Type."
Although this does not confirm that it's accepting blame, Six Apart does have an update ready for its Movable Type users, which Seki added is the first "since the PBS hacking case", so maybe it's just good timing.
It suggested that all users should download the update and Seki "strongly recommended" that they do so.
"In the past years, Six Apart has made efforts to provide security fixes promptly for major releases of Movable Type, because we understand that our customers are not always ready to migrate to the latest version of our software. That's why we have released updates for the Movable Type 4.3, 5.0, and 5.1 branches today," he added. µ