CVE-2006-6017

Priority
Description
WordPress before 2.0.5 does not properly store a profile containing a
string representation of a serialized object, which allows remote
authenticated users to cause a denial of service (application crash) via a
string that represents a (1) malformed or (2) large serialized object,
because the object triggers automatic unserialization for display.
Notes
Package
Upstream:released (2.0.5)
More Information

Updated: 2020-09-09 23:56:55 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)