Lucene search
MitreCVELIST:CVE-2010-1128HistoryMar 26, 2010 - 8:00 p.m.
CVE-2010-1128
2010-03-2620:00:00
mitre
www.cve.org
5
The Linear Congruential Generator (LCG) in PHP before 5.2.13 does not provide the expected entropy, which makes it easier for context-dependent attackers to guess values that were intended to be unpredictable, as demonstrated by session cookies generated by using the uniqid function.
Related
ubuntucve
ubuntucve
CVE-2010-1128
2010-03-26 00:00:00
prion
prion
Design/Logic Flaw
2010-03-26 20:30:00
exploitdb
exploitdb
PHP 5.3.1 - LCG Entropy Security
2010-02-26 00:00:00
nvd
nvd
CVE-2010-1128
2010-03-26 20:30:00
veracode
veracode
Insecure Randomness
2020-04-10 00:53:57
cve
cve
CVE-2010-1128
2010-03-26 20:30:00
openvas
openvas
PHP < 5.2.13 Multiple Vulnerabilities
2010-02-27 00:00:00
Mandriva Update for mandriva-release MDVA-2010:058 (mandriva-release)
2010-02-15 00:00:00
Mandriva Update for mandriva-release MDVA-2010:058 (mandriva-release)
2010-02-15 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : php (MDVSA-2010:058)
2010-03-11 00:00:00
PHP < 5.3.2 / 5.2.13 Multiple Vulnerabilities
2010-02-26 00:00:00
Debian DSA-2089-1 : php5 - several vulnerabilities
2010-08-23 00:00:00
debian
debian
[SECURITY] [DSA-2089-1] New php5 packages fix several vulnerabilities
2010-08-06 05:42:32
osv
osv
php5 - several vulnerabilities
2010-08-06 00:00:00
redhat
redhat
(RHSA-2010:0919) Moderate: php security update
2010-11-29 00:00:00
centos
centos
php security update
2010-11-30 12:21:14
oraclelinux
oraclelinux
php security update
2010-11-29 00:00:00
securityvulns
securityvulns
[USN-989-1] PHP vulnerabilities
2010-09-27 00:00:00
[ GLSA 201110-06 ] PHP: Multiple vulnerabilities
2011-10-12 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2010-09-20 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2011-10-10 00:00:00