CVE-2008-2108 in PHPИнформация

Сводка (Английский)

The GENERATE_SEED macro in PHP 4.x before 4.4.8 and 5.x before 5.2.5, when running on 64-bit systems, performs a multiplication that generates a portion of zero bits during conversion due to insufficient precision, which produces 24 bits of entropy and simplifies brute force attacks against protection mechanisms that use the rand and mt_rand functions.

Резервировать

07.05.2008

Раскрытие

07.05.2008

Записи

VulDB provides additional information and datapoints for this CVE:

ИДУязвимостьCWEЭксКонCVE
3697PHP PCRE отказ в обслуживании189ВысокийОфициальное исправлениеCVE-2008-2108

Описание

CPE

CWE

CVSS

Эксплойты

История

Разница

Связать

Разведка угроз

API JSON

API XML

API CSV

ПредыдущийОбзорДалее

Do you need the next level of professionalism?

Upgrade your account now!