CVE-2008-2107

PHP 32 bit weak random seed

Severity Score

7.5

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

The GENERATE_SEED macro in PHP 4.x before 4.4.8 and 5.x before 5.2.5, when running on 32-bit systems, performs a multiplication using values that can produce a zero seed in rare circumstances, which allows context-dependent attackers to predict subsequent values of the rand and mt_rand functions and possibly bypass protection mechanisms that rely on an unknown initial seed.

La macro GENERATE_SEED de PHP 4.x versiones anteriores a la 4.4.8 y 5.x versiones anteriores a la 5.2.5, cuando se ejecuta en sistemas de 32 bits, realiza un producto usando valores que pueden generar una semilla cero en circunstancias excepcionales, lo cual permite a atacantes según contexto, adivinar valores posteriores de la secuencia generada y las funciones mt_rand, y posiblemente evitar los mecanismos de protección que dependen de una semilla inicial desconocida.

*Credits: N/A

CVSS Scores

NISTv2 7.5

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2008-05-07 CVE Reserved
2008-05-07 CVE Published
2024-05-13 EPSS Updated
2024-08-07 CVE Updated
2024-08-07 First Exploit
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-189: Numeric Errors

CAPEC

References (34)

URL	Tag	Source
http://secunia.com/advisories/30757	Third Party Advisory
http://secunia.com/advisories/30828	Third Party Advisory
http://secunia.com/advisories/30967	Third Party Advisory
http://secunia.com/advisories/31119	Third Party Advisory
http://secunia.com/advisories/31124	Third Party Advisory
http://secunia.com/advisories/31200	Third Party Advisory
http://secunia.com/advisories/32746	Third Party Advisory
http://secunia.com/advisories/35003	Third Party Advisory
http://securityreason.com/securityalert/3859	Third Party Advisory
http://www.securityfocus.com/archive/1/491683/100/0/threaded	Mailing List
https://exchange.xforce.ibmcloud.com/vulnerabilities/42226	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/42284	Vdb Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10644	Signature

URL	Date	SRC
http://archives.neohapsis.com/archives/fulldisclosure/2008-05/0103.html	2024-08-07
http://www.sektioneins.de/advisories/SE-2008-02.txt	2024-08-07

URL	Date	SRC

URL	Date	SRC
http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html	2018-10-11
http://security.gentoo.org/glsa/glsa-200811-05.xml	2018-10-11
http://www.debian.org/security/2009/dsa-1789	2018-10-11
http://www.mandriva.com/security/advisories?name=MDVSA-2008:125	2018-10-11
http://www.mandriva.com/security/advisories?name=MDVSA-2008:126	2018-10-11
http://www.mandriva.com/security/advisories?name=MDVSA-2008:127	2018-10-11
http://www.mandriva.com/security/advisories?name=MDVSA-2008:128	2018-10-11
http://www.mandriva.com/security/advisories?name=MDVSA-2008:129	2018-10-11
http://www.mandriva.com/security/advisories?name=MDVSA-2008:130	2018-10-11
http://www.redhat.com/support/errata/RHSA-2008-0505.html	2018-10-11
http://www.redhat.com/support/errata/RHSA-2008-0544.html	2018-10-11
http://www.redhat.com/support/errata/RHSA-2008-0545.html	2018-10-11
http://www.redhat.com/support/errata/RHSA-2008-0546.html	2018-10-11
http://www.redhat.com/support/errata/RHSA-2008-0582.html	2018-10-11
http://www.ubuntu.com/usn/usn-628-1	2018-10-11
https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00773.html	2018-10-11
https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00779.html	2018-10-11
https://access.redhat.com/security/cve/CVE-2008-2107	2008-07-22
https://bugzilla.redhat.com/show_bug.cgi?id=445684	2008-07-22

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				<= 4.4.7 Search vendor "Php" for product "Php" and version " <= 4.4.7"		-		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5 Search vendor "Php" for product "Php" and version "5"		-		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.0.0 Search vendor "Php" for product "Php" and version "5.0.0"		beta1		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.0.0 Search vendor "Php" for product "Php" and version "5.0.0"		beta2		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.0.0 Search vendor "Php" for product "Php" and version "5.0.0"		beta3		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.0.0 Search vendor "Php" for product "Php" and version "5.0.0"		rc1		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.0.0 Search vendor "Php" for product "Php" and version "5.0.0"		rc2		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.0.0 Search vendor "Php" for product "Php" and version "5.0.0"		rc3		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.0.1 Search vendor "Php" for product "Php" and version "5.0.1"		-		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.0.2 Search vendor "Php" for product "Php" and version "5.0.2"		-		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.0.3 Search vendor "Php" for product "Php" and version "5.0.3"		-		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.0.4 Search vendor "Php" for product "Php" and version "5.0.4"		-		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.0.5 Search vendor "Php" for product "Php" and version "5.0.5"		-		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.1.0 Search vendor "Php" for product "Php" and version "5.1.0"		-		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.1.1 Search vendor "Php" for product "Php" and version "5.1.1"		-		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.1.2 Search vendor "Php" for product "Php" and version "5.1.2"		-		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.1.3 Search vendor "Php" for product "Php" and version "5.1.3"		-		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.1.4 Search vendor "Php" for product "Php" and version "5.1.4"		-		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.1.5 Search vendor "Php" for product "Php" and version "5.1.5"		-		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.1.6 Search vendor "Php" for product "Php" and version "5.1.6"		-		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.2.0 Search vendor "Php" for product "Php" and version "5.2.0"		-		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.2.1 Search vendor "Php" for product "Php" and version "5.2.1"		-		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.2.2 Search vendor "Php" for product "Php" and version "5.2.2"		-		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.2.3 Search vendor "Php" for product "Php" and version "5.2.3"		-		Affected
Php Search vendor "Php"		Php Search vendor "Php" for product "Php"				5.2.4 Search vendor "Php" for product "Php" and version "5.2.4"		-		Affected