oss-sec mailing list archives

CVE request: Wordpress Trackback DoS

From: Hanno Böck <hanno () hboeck de>
Date: Wed, 21 Oct 2009 13:18:13 +0200


http://seclists.org/fulldisclosure/2009/Oct/263
http://security-sh3ll.blogspot.com/2009/10/wordpress-resource-exhaustion-
denial-of.html

Original post (and credits to) seems to be this, it's not english:
http://rooibo.wordpress.com/2009/10/17/agujero-de-seguridad-en-wordpress/

Upstream recognized and fixed in 2.8.5:
http://wordpress.org/development/2009/10/wordpress-2-8-5-hardening-release/

-- 
Hanno Böck              Blog:           http://www.hboeck.de/
GPG: 3DBD3B20           Jabber/Mail:    hanno () hboeck de

http://schokokeks.org - professional webhosting

Attachment: signature.asc
Description: This is a digitally signed message part.

Current thread:

CVE request: Wordpress Trackback DoS Hanno Böck (Oct 21)
- Re: CVE request: Wordpress Trackback DoS Josh Bressers (Oct 21)