Lucene search

Ubuntu.comUB:CVE-2012-2317

HistoryMay 14, 2012 - 12:00 a.m.

CVE-2012-2317

2012-05-1400:00:00

ubuntu.com

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

7.2

Confidence

Low

EPSS

0.002

Percentile

55.7%

JSON

The Debian php_crypt_revamped.patch patch for PHP 5.3.x, as used in the
php5 package before 5.3.3-7+squeeze4 in Debian GNU/Linux squeeze, the php5
package before 5.3.2-1ubuntu4.17 in Ubuntu 10.04 LTS, and the php5 package
before 5.3.5-1ubuntu7.10 in Ubuntu 11.04, does not properly handle an empty
salt string, which might allow remote attackers to bypass authentication by
leveraging an application that relies on the PHP crypt function to choose a
salt for password hashing.

Bugs

<http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=581170>
<http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=572601 (introduced by this bug)>

Notes

Author	Note
mdeslaur	introduced in php_crypt_revamped.patch patch in 5.3.2-1 reproducer in debian bug also fixed in 5.3.3-7+squeeze4

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchphp5< 5.3.2-1ubuntu4.17UNKNOWN
ubuntu11.04noarchphp5< 5.3.5-1ubuntu7.10UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	10.04	noarch	php5	< 5.3.2-1ubuntu4.17	UNKNOWN
ubuntu	11.04	noarch	php5	< 5.3.5-1ubuntu7.10	UNKNOWN

References

www.openwall.com/lists/oss-security/2012/05/04/7

launchpad.net/bugs/cve/CVE-2012-2317

nvd.nist.gov/vuln/detail/CVE-2012-2317

security-tracker.debian.org/tracker/CVE-2012-2317

ubuntu.com/security/notices/USN-1481-1

www.cve.org/CVERecord?id=CVE-2012-2317

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

7.2

Confidence

Low

EPSS

0.002

Percentile

55.7%

JSON

Related for UB:CVE-2012-2317