Description

Integer overflow in the mt_rand function in PHP before 5.3.4 might make it easier for context-dependent attackers to predict the return values by leveraging a script's use of a large max parameter, as demonstrated by a value that exceeds mt_getrandmax.

Remediation

References

CVE-2011-0755

Related Vulnerabilities

WordPress 3.8.x Multiple Vulnerabilities (3.8 - 3.8.15)

MySQL CVE-2019-2507 Vulnerability (CVE-2019-2507)

TYPO3 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2009-4855)

WordPress Plugin Ads in bottom right Multiple Vulnerabilities (1.0)

Drupal Core 8.x.x Directory Traversal (8.0.0 - 8.8.12)

Severity

Medium

Classification

CVE-2011-0755

Tags

Missing Update Known Vulnerabilities