what you don't know can hurt you

Register | Login

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 1 of 1

Files

PHP 5.3.2 Weak Random Number Generator: Posted Mar 30, 2010; Authored by Andreas Bogk; PHP versions 5.3.2 and below utilize a cryptographically weak random number generator to produce session ID information. Additionally, not enough entropy is used for the initial seeding of the RNG, and some of the entropy can leak by careless use of the uniqid() PHP function. Under certain circumstances, these individual weaknesses interact and reduce the number of possible values of a PHP session ID so much that exhaustive search for a valid session ID against the web server becomes feasible.; tags | advisory, web, php; SHA-256 | 8c84b573c1249141276869a59ae2230ce6a6572c58b5967a58370265274695f6; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 183 files
Ubuntu 59 files
Debian 20 files
Valentin Lobstein 11 files
nu11secur1ty 9 files
Apple 6 files
Google Security Research 6 files
E1.Coders 4 files
Ersin Erenler 4 files
tmrswrr 4 files

Recent News

Juniper Networks Publishes Dozens Of New Security Advisories: Posted Apr 15, 2024; tags | headline, flaw, juniper; Favorite | View

LockBit Copycat DarkVault Spurs Rebranding Rumor: Posted Apr 12, 2024; tags | headline, hacker, malware, cybercrime, fraud, cryptography; Favorite | View

French Issue Alerte Rouge After Local Govs Knocked Offline By Cyberattack: Posted Apr 12, 2024; tags | headline, government, denial of service, france; Favorite | View

More Legal Acrimony For Truth Social, As Executive Says He Was Hacked: Posted Apr 12, 2024; tags | headline, hacker, password, social; Favorite | View

Palo Alto Networks Warns Of Exploited Firewall Vulnerability: Posted Apr 12, 2024; tags | headline, hacker, flaw; Favorite | View

Roku Says More Than 500,000 Accounts Impacted In Cyberattack: Posted Apr 12, 2024; tags | headline, hacker, privacy, data loss, flaw; Favorite | View

US Government On High Alert As Russian Hackers Steal Critical Correspondence From Microsoft: Posted Apr 12, 2024; tags | headline, hacker, government, microsoft, email, usa, russia, data loss, cyberwar; Favorite | View

Apple Drops Term State-Sponsored Attacks From Its Threat Notification Policy: Posted Apr 11, 2024; tags | headline, government, privacy, phone, india, cyberwar, spyware, apple; Favorite | View

Google Cloud Unveils New AI-Powered Security Capabilities: Posted Apr 11, 2024; tags | headline, botnet, google; Favorite | View

Fortinet Patches FortiClientLinux Critical RCE Vulnerability: Posted Apr 11, 2024; tags | headline, flaw, patch; Favorite | View

View More News →

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links: News by Month; News Tags; Files by Month; File Tags; File Directory

About Us: History & Purpose; Contact Information; Terms of Service; Privacy Statement; Copyright Information

Services: Security Services
Hosting By: Rokasec