A vulnerability, which was classified as problematic, was found in MyBB (Content Management System). Affected is the function mt_rand of the file functions.php. The manipulation with an unknown input leads to a cryptographic issues vulnerability. CWE is classifying the issue as CWE-310. This is going to have an impact on confidentiality, integrity, and availability. CVE summarizes:

The my_rand function in functions.php in MyBB (aka MyBulletinBoard) before 1.4.12 does not properly use the PHP mt_rand function, which makes it easier for remote attackers to obtain access to an arbitrary account by requesting a reset of the account s password, and then conducting a brute-force attack.

The weakness was disclosed 12/30/2010 (Website). The advisory is available at openwall.com. This vulnerability is traded as CVE-2010-4626 since 12/30/2010. The exploitability is told to be difficult. It is possible to launch the attack remotely. The exploitation doesn't require any form of authentication. Technical details are known, but there is no available exploit. This vulnerability is assigned to T1600 by the MITRE ATT&CK project.

By approaching the search of inurl:functions.php it is possible to find vulnerable targets with Google Hacking.

Upgrading to version 1.2.0 eliminates this vulnerability.

The vulnerability is also documented in the vulnerability database at X-Force (64516). The entries 55905, 55904, 55903 and 55901 are pretty similar.

Productinfo

Type

• Content Management System

Name

• MyBB

Version

• 1.00
• 1.01
• 1.02
• 1.03
• 1.04
• 1.1.0
• 1.1.1
• 1.1.2
• 1.1.3
• 1.1.4
• 1.1.5
• 1.1.6
• 1.1.7
• 1.1.8
• 1.2.0
• 1.2.1
• 1.2.2
• 1.2.3
• 1.2.4
• 1.2.5
• 1.2.6
• 1.2.7
• 1.2.8
• 1.2.9
• 1.2.10
• 1.2.11
• 1.2.12
• 1.2.13
• 1.4.0
• 1.4.2
• 1.4.3
• 1.4.6
• 1.4.8
• 1.4.9
• 1.4.10
• 1.4.11

License

• open-source

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion