CVE-2008-2108 in PHP정보

요약 (영어)

The GENERATE_SEED macro in PHP 4.x before 4.4.8 and 5.x before 5.2.5, when running on 64-bit systems, performs a multiplication that generates a portion of zero bits during conversion due to insufficient precision, which produces 24 bits of entropy and simplifies brute force attacks against protection mechanisms that use the rand and mt_rand functions.

예약하다

2008. 05. 07.

공개

2008. 05. 07.

엔트리

VulDB provides additional information and datapoints for this CVE:

아이디취약성CWE악용 대책CVE
3697PHP PCRE 서비스 거부189높음공식 수정CVE-2008-2108

설명

CPE

CWE

CVSS

익스플로잇

역사

차이

연결하다

위협 인텔리전스

API JSON

API XML

API CSV

이전개요다음

Might our Artificial Intelligence support you?

Check our Alexa App!