Lucene search
HistoryJan 29, 2007 - 5:28 p.m.
CVE-2007-0539
wordpress
cve-2007-0539
dos
vulnerability
wp_remote_fopen
pingback service
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
6.6 Medium
AI Score
Confidence
High
0.012 Low
EPSS
Percentile
85.4%
The wp_remote_fopen function in WordPress before 2.1 allows remote attackers to cause a denial of service (bandwidth or thread consumption) via pingback service calls with a source URI that corresponds to a large file, which triggers a long download session without a timeout constraint.
Affected configurations
Node
wordpresswordpressRange≤2.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress:wordpress | wordpress | le | 2.0 |
Related
prion
prion
Design/Logic Flaw
2007-01-29 17:28:00
patchstack
patchstack
WordPress <= 2.0 - Denial of Service Attacks
2007-01-29 00:00:00
nvd
nvd
CVE-2007-0539
2007-01-29 17:28:00
debiancve
debiancve
CVE-2007-0539
2007-01-29 17:28:00
ubuntucve
ubuntucve
CVE-2007-0539
2007-01-29 00:00:00
cvelist
cvelist
CVE-2007-0539
2007-01-29 17:00:00
securityvulns
securityvulns
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
6.6 Medium
AI Score
Confidence
High
0.012 Low
EPSS
Percentile
85.4%
Related for CVE-2007-0539