Lucene search
K

3 matches found

BDU FSTEC
BDU FSTEC
added 2022/04/27 12:0 a.m.7 views

The vulnerability of the mt_rand function in the PHP programming language allows attackers to predict the returned values.

The vulnerability of the mtrand function in the PHP programming language is related to errors in number processing. Exploiting this vulnerability can allow a remote attacker to predict the values that will be returned...

5.3CVSS5.5AI score0.01937EPSS
Exploits1References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/04/06 12:0 a.m.5 views

The vulnerability lies in the implementation of the `mt_rand()` and `time()` functions in the pearweb package’s PHP classes from the PEAR library. This allows an attacker to gain unauthorized access to protected information or execute arbitrary code.

The vulnerability in the implementation of the mtrand and time functions in the pearweb package’s PHP class library in the PEAR library is related to the use of an insufficiently secure MD5 encryption algorithm. Exploiting this vulnerability could allow an attacker to gain unauthorized access to...

7.8CVSS5.8AI score
Exploits0References6Affected Software1
RedHat Linux
RedHat Linux
added 2008/07/02 1:15 p.m.7 views

PHP 32 bit weak random seed

The GENERATESEED macro in PHP 4.x before 4.4.8 and 5.x before 5.2.5, when running on 32-bit systems, performs a multiplication using values that can produce a zero seed in rare circumstances, which allows context-dependent attackers to predict subsequent values of the rand and mtrand functions an...

7.5CVSS5.8AI score0.03392EPSS
Exploits1References4
Rows per page
Query Builder