Session Fixation Vulnerability in SimpleSAMLphp by SimpleSAML
CVE-2017-12868

9.8CRITICAL

Key Information:

Vendor

SimplesamlPHP

Status
SimplesamlPHP
Vendor
CVE Published:
1 September 2017

What is CVE-2017-12868?

The secureCompare method in lib/SimpleSAML/Utils/Crypto.php in SimpleSAMLphp versions up to and including 1.14.13 is vulnerable when used with PHP versions prior to 5.6. This flaw can enable attackers to perform session fixation attacks or potentially bypass authentication by exploiting inadequate character conversions that occur before an XOR operation, compromising the security of affected applications.

References

https://simplesamlphp.org/security/201705-01
x_refsource_CONFIRM
https://lists.debian.org/debian-lts-announce/2017/12/msg0...
mailing-listx_refsource_MLIST
https://github.com/simplesamlphp/simplesamlphp/commit/4bc...
x_refsource_CONFIRM

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.