Comments on: New 0-Day WordPress Exploit

By: Your Best Blog Post So Far - Net Builders

Your Best Blog Post So Far - Net Builders — Fri, 23 Apr 2010 19:03:28 +0000

[...] have to say of the handful of blog posts I've made, this one has been the best: New 0-Day WordPress Exploit | Steve Fortuna I was the first one in English to publicly post this information and in turn got a lot of links [...]

By: Jared Atchison » Blog Archive » Wordpress trackback exploit found

Jared Atchison » Blog Archive » Wordpress trackback exploit found — Fri, 23 Oct 2009 15:51:59 +0000

[...] If you want to read more about all the technical stuff you can find the original blog post detailing the exploit here. [...]

By: steve

steve — Fri, 23 Oct 2009 13:02:12 +0000

I haven't looked at the MU setup before but if you can find the vulnerable code in wp-trackback.php, then it would be in your best interest to upgrade or apply the patch.

jez :
hey steve,

I am running wp-mu on my sites and they did not update to 2.8.5 yet, reading your and glenn’s remarks I wonder if putting glenn’s plugin in the plugins folder and activating it sidewide will sort me out?

cheers

By: jez

jez — Fri, 23 Oct 2009 09:16:43 +0000

hey steve,

I am running wp-mu on my sites and they did not update to 2.8.5 yet, reading your and glenn’s remarks I wonder if putting glenn’s plugin in the plugins folder and activating it sidewide will sort me out?

cheers

By: WordPress 2.8.5 is available to download. » RongDhonu Tutorials - Tutorials on SEO, WordPress, Joomla, cPanel, MySQL

Thu, 22 Oct 2009 10:16:16 +0000

[...] when used. This has specifically been addressed in 2.8.5. Thanks goes out to Steve Fortuna for releasing a fix to this 0 day exploit. The release also contains a few bug fixes as [...]

By: Opět nečekaný WordPress 2.8.5 s bezpečnostní opravou proti DoS útoku | Separatista

Wed, 21 Oct 2009 20:24:42 +0000

[...] se objevil DoS (Denial-of-Service) útok pomocí trackbacků, čemuž by měla nová verze [...]

By: Otto

Otto — Wed, 21 Oct 2009 14:16:08 +0000

The fix in the WordPress 2.8.5 release is this:

if ($charset) $charset = str_replace( array(',', ' '), '', strtoupper( trim($charset) ) ); else $charset = 'ASCII, UTF-8, ISO-8859-1, JIS, EUC-JP, SJIS';

That eliminates the commas and spaces from the charset string, eliminating the resource exhaustion.

By: webanalyser-Blog » Blog Archive » Erneut Sicherheitsupdate von Wordpress verfügbar

Wed, 21 Oct 2009 14:13:39 +0000

[...] 2.9 implementiert sein werden, auf die 2.8er-Reihe übertragen wurden. So wurde das Problem mit DoS-Attacken über die Datei wp-trackback.php gefixt. Ebenso wurde Programmcode entfernt, in dem PHP-Code über [...]

By: steve

steve — Wed, 21 Oct 2009 12:49:43 +0000

I'm sure there are a lot of ways to fix the bug. What I posted is just one of those.

Gros :
escuse me, something like this:

if ( ($charset) && strtoupper( trim($charset))=== get_option(’blog_charset’);
$charset = strtoupper( trim($charset)); //$charset = get_option(’blog_charset’);
else
$charset = ‘ASCII, UTF-8, ISO-8859-1, JIS, EUC-JP, SJIS’;

By: Johnny's World | 记录个人生活以及学习网络营销与推广

Johnny's World | 记录个人生活以及学习网络营销与推广 — Wed, 21 Oct 2009 12:07:33 +0000

[...] 2.8.4的漏洞，有兴趣的朋友可以看看这里：New 0-Day WordPress Exploit。 [...]