Blake Matheny

**Name of the Vulnerable Software and Affected Versions** WordPress versions prior to 2.1 **Description** The issue allows remote attackers to cause a denial of service, consuming bandwidth or threads, by exploiting the `wp remote fopen` function through pingback service calls. This is achieved by using a source URI that corresponds to a large file, triggering a long download session without any timeout constraint. **Recommendations** For versions prior to 2.1, consider updating to a version that includes a fix for this issue, as the `wp remote fopen` function's behavior in these versions can lead to denial of service. As a temporary workaround, consider restricting or disabling the pingback service to minimize the risk of exploitation.