Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

PunBB < 1.2.17 Password Reset Information Disclosure

High

Synopsis

The remote host relies on pseudo-random data within the authentication process.

Description

The version of PunBB installed on the remote host is vulnerable to a password attack. There is a flaw in the way that PunBB generates random passwords and cookie seeds. An attacker exploiting this flaw would be able to run efficient brute-force attacks against passwords that had been recently reset. The root cause of this flaw seems to be the use of the PHP 'mt_rand()' function which gives, at most, 1,000,000 possible outputs.

Solution

Upgrade to version 1.2.17 or higher.