CVE-2008-2108


Severity : High
Published : 2008-05-07
Modified : 2010-08-21
Base Score : 7.5
Details : The GENERATE_SEED macro in PHP 4.x before 4.4.8 and 5.x before 5.2.5, when running on 64-bit systems, performs a multiplication that generates a portion of zero bits during conversion due to insufficient precision, which produces 24 bits of entropy and simplifies brute force attacks against protection mechanisms that use the rand and mt_rand functions.
Product/Version : CGE 5.x  
Mobilinux 5.x  
Pro 5.0  
Mobilinux 5.0.24  
MVL 5 Atom  
Pro 3.x  
CGE 5.x  
CEE 3.x  
Pro 4.x  
CGE 4.x  
Mobilinux 4.x  
 
 
 


CVE Vulnerabilities List CVE-2008
CVE-2008-7256CVE-2008-7068CVE-2008-6218CVE-2008-5713
CVE-2008-5300CVE-2008-5286CVE-2008-5161CVE-2008-5079
CVE-2008-5031CVE-2008-5029CVE-2008-4989CVE-2008-4864
CVE-2008-4685CVE-2008-4609CVE-2008-4554CVE-2008-4316
CVE-2008-4309CVE-2008-4307CVE-2008-4226CVE-2008-4225
CVE-2008-4210CVE-2008-4109CVE-2008-4101CVE-2008-3934
CVE-2008-3933CVE-2008-3932CVE-2008-3915CVE-2008-3527
CVE-2008-3526CVE-2008-3522CVE-2008-3521CVE-2008-3520
CVE-2008-3294CVE-2008-3276CVE-2008-3275CVE-2008-3272
CVE-2008-3146CVE-2008-3142CVE-2008-3141CVE-2008-3140
CVE-2008-3139CVE-2008-3138CVE-2008-3137CVE-2008-3075
CVE-2008-2952CVE-2008-2935CVE-2008-2812CVE-2008-2729
CVE-2008-2712CVE-2008-2364CVE-2008-2292CVE-2008-2108
CVE-2008-2107CVE-2008-2051CVE-2008-1927CVE-2008-1808
CVE-2008-1807CVE-2008-1806CVE-2008-1722CVE-2008-1678
CVE-2008-1673CVE-2008-1657CVE-2008-1483CVE-2008-1372
CVE-2008-1367CVE-2008-0658CVE-2008-0598CVE-2008-0596
CVE-2008-0122CVE-2008-0007CVE-2008-0005