Computer Security

CVE-2007-0539
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



CVECVE-2007-0539
StatusCandidate
DescriptionThe wp_remote_fopen function in WordPress before 2.1 allows remote attackers to cause a denial of service (bandwidth or thread consumption) via pingback service calls with a source URI that corresponds to a large file, which triggers a long download session without a timeout constraint.
SeverityLow
CVSS score3,3
CVSS vector(AV:R/AC:L/Au:NR/C:N/I:N/A:C/B:N)
PhaseAssigned (29.01.2007)
NVD:http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-0539
ReferencesBUGTRAQ : 20070124 Multiple Remote Vulnerabilities in Wordpress
 BUGTRAQ : 20070124 Weaknesses in Pingback Design
SecurityVulns:Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru