oss-sec mailing list archives

Re: CVE request: Wordpress Trackback DoS

From: Josh Bressers <bressers () redhat com>
Date: Wed, 21 Oct 2009 13:24:48 -0400 (EDT)

Please use CVE-2009-3622

Thanks.

-- 
    JB


----- "Hanno Böck" <hanno () hboeck de> wrote:

http://seclists.org/fulldisclosure/2009/Oct/263
http://security-sh3ll.blogspot.com/2009/10/wordpress-resource-exhaustion-
denial-of.html

Original post (and credits to) seems to be this, it's not english:
http://rooibo.wordpress.com/2009/10/17/agujero-de-seguridad-en-wordpress/

Upstream recognized and fixed in 2.8.5:
http://wordpress.org/development/2009/10/wordpress-2-8-5-hardening-release/

-- 
Hanno Böck            Blog:           http://www.hboeck.de/
GPG: 3DBD3B20         Jabber/Mail:    hanno () hboeck de

http://schokokeks.org - professional webhosting

Current thread:

CVE request: Wordpress Trackback DoS Hanno Böck (Oct 21)
- Re: CVE request: Wordpress Trackback DoS Josh Bressers (Oct 21)