CVE-2011-2483
crypt_blowfish: 8-bit character mishandling allows different password pairs to produce the same hash
Severity Score
5.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
crypt_blowfish before 1.1, as used in PHP before 5.3.7 on certain platforms, PostgreSQL before 8.4.9, and other products, does not properly handle 8-bit characters, which makes it easier for context-dependent attackers to determine a cleartext password by leveraging knowledge of a password hash.
crypt_blowfish en versiones anteriores a 1.1, como se utiliza en PHP en versiones anteriores a 5.3.7 en ciertas plataformas, PostgreSQL en versiones anteriores a 8.4.9 y otros productos, no maneja adecuadamente caracteres de 8-bit, lo que hace más fácil a atacantes dependientes de contexto determinar una contraseña en texto plano aprovechando el conocimiento del hash de una contraseña.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2011-06-15 CVE Reserved
- 2011-08-25 CVE Published
- 2023-10-26 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-310: Cryptographic Issues
CAPEC
References (24)
| URL | Tag | Source |
|---|---|---|
| http://freshmeat.net/projects/crypt_blowfish | Broken Link | |
| http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705 | Third Party Advisory | |
| http://php.net/security/crypt_blowfish | Third Party Advisory | |
| http://support.apple.com/kb/HT5130 | Third Party Advisory |
|
| http://www.php.net/ChangeLog-5.php#5.3.7 | Third Party Advisory | |
| http://www.securityfocus.com/bid/49241 | Third Party Advisory | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/69319 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.openwall.com/crypt | 2024-04-23 | |
| http://www.php.net/archive/2011.php#id2011-08-18-1 | 2024-04-23 | |
| http://www.postgresql.org/docs/8.4/static/release-8-4-9.html | 2024-04-23 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Php Search vendor "Php" | Php Search vendor "Php" for product "Php" | < 5.3.7 Search vendor "Php" for product "Php" and version " < 5.3.7" | - |
Affected
| ||||||
| Postgresql Search vendor "Postgresql" | Postgresql Search vendor "Postgresql" for product "Postgresql" | >= 8.2.0 < 8.2.22 Search vendor "Postgresql" for product "Postgresql" and version " >= 8.2.0 < 8.2.22" | - |
Affected
| ||||||
| Postgresql Search vendor "Postgresql" | Postgresql Search vendor "Postgresql" for product "Postgresql" | >= 8.3.0 < 8.3.16 Search vendor "Postgresql" for product "Postgresql" and version " >= 8.3.0 < 8.3.16" | - |
Affected
| ||||||
| Postgresql Search vendor "Postgresql" | Postgresql Search vendor "Postgresql" for product "Postgresql" | >= 8.4.0 < 8.4.9 Search vendor "Postgresql" for product "Postgresql" and version " >= 8.4.0 < 8.4.9" | - |
Affected
| ||||||
| Postgresql Search vendor "Postgresql" | Postgresql Search vendor "Postgresql" for product "Postgresql" | >= 9.0.0 < 9.0.5 Search vendor "Postgresql" for product "Postgresql" and version " >= 9.0.0 < 9.0.5" | - |
Affected
| ||||||
| Openwall Search vendor "Openwall" | Crypt Blowfish Search vendor "Openwall" for product "Crypt Blowfish" | < 1.1 Search vendor "Openwall" for product "Crypt Blowfish" and version " < 1.1" | - |
Affected
| ||||||