Lucene search
Ubuntu.comUB:CVE-2011-0755HistoryFeb 02, 2011 - 12:00 a.m.
CVE-2011-0755
2011-02-0200:00:00
ubuntu.com
ubuntu.com
4
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
9.9
Confidence
High
EPSS
0.002
Percentile
55.3%
Integer overflow in the mt_rand function in PHP before 5.3.4 might make it
easier for context-dependent attackers to predict the return values by
leveraging a script’s use of a large max parameter, as demonstrated by a
value that exceeds mt_getrandmax.
Notes
| Author | Note |
|---|---|
| mdeslaur | isn’t a security issue…arguments are under script author’s control. Marking as ignored. |
Related
cve
cve
CVE-2011-0755
2011-02-02 22:00:02
cvelist
cvelist
CVE-2011-0755
2011-02-02 21:00:00
nvd
nvd
CVE-2011-0755
2011-02-02 22:00:02
prion
prion
Integer overflow
2011-02-02 22:00:00
openvas
openvas
PHP Multiple Security Bypass Vulnerabilities
2011-02-01 00:00:00
PHP < 5.3.4 Multiple Vulnerabilities
2020-08-17 00:00:00
PHP < 5.3.4 Multiple Vulnerabilities
2012-06-21 00:00:00
nessus
nessus
SuSE 11.1 Security Update : PHP5 (SAT Patch Number 4133)
2011-04-04 00:00:00
SuSE 10 Security Update : PHP5 (ZYPP Patch Number 7375)
2011-04-04 00:00:00
SuSE 10 Security Update : PHP5 (ZYPP Patch Number 7393)
2011-12-13 00:00:00
f5
f5
Multiple PHP vulnerabilities
2012-04-05 02:07:00
SOL13518 - Multiple PHP vulnerabilities
2012-04-04 00:00:00
securityvulns
securityvulns
[ GLSA 201110-06 ] PHP: Multiple vulnerabilities
2011-10-12 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2011-10-10 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
9.9
Confidence
High
EPSS
0.002
Percentile
55.3%
Related for UB:CVE-2011-0755