[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: HYSA-2006-005 WordPress 2.0.1 Remote DoS Exploit

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: HYSA-2006-005 WordPress 2.0.1 Remote DoS Exploit
From: scaturan@xxxxxxxxx
Date: 9 Mar 2006 19:26:35 -0000

if you're using mod_security, try a variant of this ruleset:

SecFilterSelective "THE_REQUEST" "wp-register.php" "id:1004,deny,log,status:412"

#SecFilterRemove 1004 <- use this to remove the rule per virtual host, 
uncommented.

Prev by Date: n8cms 1.1 & 1.2 version Sql İnjection And XSS
Next by Date: [KDE Security Advisory] kpdf of KDE 3.3.x heap based buffer overflow
Previous by thread: Re: HYSA-2006-005 WordPress 2.0.1 Remote DoS Exploit
Next by thread: Re: HYSA-2006-005 WordPress 2.0.1 Remote DoS Exploit
Index(es):
- Date
- Thread