CVE-2007-0540
WordPress < 2.0 - Denial of Service via Pingback Service Calls
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2007-0540. PoCs published by Blake Matheny.
AI-analyzed exploit summary This exploit targets a denial-of-service (DoS) vulnerability in WordPress versions prior to 2.1 by abusing the Pingback feature to consume server resources. It sends multiple requests to a large file, causing memory and bandwidth exhaustion.
Description
WordPress allows remote attackers to cause a denial of service (bandwidth or thread consumption) via pingback service calls with a source URI that corresponds to a file with a binary content type, which is downloaded even though it cannot contain usable pingback data.
Exploits (1)
This exploit targets a denial-of-service (DoS) vulnerability in WordPress versions prior to 2.1 by abusing the Pingback feature to consume server resources. It sends multiple requests to a large file, causing memory and bandwidth exhaustion.