SB2010121004 - Multiple vulnerabilities in PHP
Published: December 10, 2010 Updated: June 12, 2025
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 secuirty vulnerabilities.
1) Cryptographic issues (CVE-ID: CVE-2010-1128)
The vulnerability allows a remote non-authenticated attacker to read and manipulate data.
The Linear Congruential Generator (LCG) in PHP before 5.2.13 does not provide the expected entropy, which makes it easier for context-dependent attackers to guess values that were intended to be unpredictable, as demonstrated by session cookies generated by using the uniqid function.
2) Input validation error (CVE-ID: CVE-2009-4418)
The vulnerability allows a remote non-authenticated attacker to perform service disruption.
The unserialize function in PHP 5.3.0 and earlier allows context-dependent attackers to cause a denial of service (resource consumption) via a deeply nested serialized variable, as demonstrated by a string beginning with a:1: followed by many {a:1: sequences.
Remediation
Install update from vendor's website.
References
- http://secunia.com/advisories/38708
- http://secunia.com/advisories/42410
- http://www.php.net/ChangeLog-5.php
- http://www.php.net/releases/5_2_13.php
- http://www.redhat.com/support/errata/RHSA-2010-0919.html
- http://www.securityfocus.com/bid/38430
- http://www.vupen.com/english/advisories/2010/0479
- http://www.vupen.com/english/advisories/2010/3081
- http://www.suspekt.org/2009/11/28/shocking-news-in-php-exploitation/
- http://www.suspekt.org/downloads/POC2009-ShockingNewsInPHPExploitation.pdf