CVE-2008-3072

Published: Jul 8, 2008Modified: Apr 23, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Simple Machines Forum (SMF) 1.1.x before 1.1.5 and 1.0.x before 1.0.13, when running in PHP before 4.2.0, does not properly seed the random number generator, which has unknown impact and attack vectors.

Affected (2)

Products: Simple Machines: Simple Machines Forum

Simple Machines

1 product

Simple Machines Forum

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Simple Machines Simple Machines Forum	Up to 1.0.12
Simple Machines Simple Machines Forum	Up to 1.1.4

Related CWEs

CWE-189

References (4)

http://secunia.com/advisories/30955

Source: cve@mitre.org

http://www.simplemachines.org/community/index.php?P=c3696c2022b54fa50c5f341bf5710aa3&topic=236816.0

Source: cve@mitre.org

http://secunia.com/advisories/30955

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.simplemachines.org/community/index.php?P=c3696c2022b54fa50c5f341bf5710aa3&topic=236816.0

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.