Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Debian php_crypt_revamped.patch patch for PHP 5.3.x, as used in the php5 package before 5.3.3-7+squeeze4 in Debian GNU/Linux squeeze, the php5 package before 5.3.2-1ubuntu4.17 in Ubuntu 10.04 LTS, and the php5 package before 5.3.5-1ubuntu7.10 in Ubuntu 11.04, does not properly handle an empty salt string, which might allow remote attackers to bypass authentication by leveraging an application that relies on the PHP crypt function to choose a salt for password hashing.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PHP 认证绕过漏洞
Vulnerability Description
PHP(PHP:Hypertext Preprocessor,PHP:超文本预处理器)是PHP Group和开放源代码社区共同维护的一种开源的通用计算机脚本语言。该语言主要用于Web开发,支持多种数据库及操作系统。 使用在Debian GNU/Linux squeeze中的5.3.3-7+squeeze4之前的php5数据包、Ubuntu 10.04 LTS中的5.3.2-1ubuntu4.17之前的php5数据包、Ubuntu 11.04版本中的5.3.5-1ubuntu7.10之前的php5数据包中的
CVSS Information
N/A
Vulnerability Type
N/A