Lucene search
HistoryJan 29, 2007 - 5:28 p.m.
CVE-2007-0540
wordpress
denial of service
pingback
cve-2007-0540
nvd
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.4
Confidence
High
EPSS
0.053
Percentile
93.1%
WordPress allows remote attackers to cause a denial of service (bandwidth or thread consumption) via pingback service calls with a source URI that corresponds to a file with a binary content type, which is downloaded even though it cannot contain usable pingback data.
Affected configurations
Node
wordpresswordpressRange≤2.0
Related
cvelist
cvelist
CVE-2007-0540
2007-01-29 17:00:00
nvd
nvd
CVE-2007-0540
2007-01-29 17:28:00
ubuntucve
ubuntucve
CVE-2007-0540
2007-01-29 00:00:00
prion
prion
Design/Logic Flaw
2007-01-29 17:28:00
debiancve
debiancve
CVE-2007-0540
2007-01-29 17:28:00
patchstack
patchstack
WordPress <= 2.1 - Denial of Service Attacks
2007-01-29 00:00:00
nessus
nessus
Debian DSA-1564-1 : wordpress - multiple vulnerabilities
2008-05-02 00:00:00
openvas
openvas
Debian Security Advisory DSA 1564-1 (wordpress)
2008-05-12 00:00:00
Debian: Security Advisory (DSA-1564-1)
2008-05-12 00:00:00
debian
debian
[SECURITY] [DSA 1564-1] New wordpress packages fix several vulnerabilities
2008-05-01 17:00:13
osv
osv
wordpress - several vulnerabilities
2008-05-01 00:00:00
securityvulns
securityvulns
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.4
Confidence
High
EPSS
0.053
Percentile
93.1%
Related for CVE-2007-0540