CVE-2011-3189
PHP 5.3.7 - Authentication Bypass via MD5 Crypt Salt Handling
Title source: llmDescription
The crypt function in PHP 5.3.7, when the MD5 hash type is used, returns the value of the salt argument instead of the hashed string, which might allow remote attackers to bypass authentication via an arbitrary password, a different vulnerability than CVE-2011-2483.
References (10)
Core 10
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/74726
Vendor Advisory x_refsource_confirm
http://www.php.net/ChangeLog-5.php#5.3.8
Issue Tracking x_refsource_confirm
https://bugs.gentoo.org/show_bug.cgi?id=380261
Vendor Advisory x_refsource_confirm
http://support.apple.com/kb/HT5130
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/45678
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2011/08/23/4
Mailing List vendor-advisory
x_refsource_apple
http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html
Exploit x_refsource_confirm
https://bugs.php.net/bug.php?id=55439
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/69429
Vendor Advisory x_refsource_confirm
http://www.php.net/archive/2011.php#id2011-08-23-1
Scores
EPSS
0.0127
EPSS Percentile
79.8%
Details
CWE
CWE-310
Status
published
Products (1)
php/php
5.3.7
Published
Aug 25, 2011
Tracked Since
Feb 18, 2026