PT-2017-12741 · Simplesamlphp · Simplesamlphp
Chris Czub
·
Published
2017-09-01
·
Updated
2022-05-17
·
CVE-2017-12871
CVSS v3.1
5.9
Medium
| Vector | AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
SimpleSAMLphp versions 1.14.x through 1.14.11
Description
The issue makes it easier for context-dependent attackers to bypass the encryption protection mechanism by leveraging the use of the first 16 bytes of the
secret key as the initialization vector (IV) in the aesEncrypt method.Recommendations
For SimpleSAMLphp versions 1.14.x through 1.14.11, consider modifying the
aesEncrypt method in lib/SimpleSAML/Utils/Crypto.php to use a secure initialization vector (IV) instead of the first 16 bytes of the secret key. As a temporary workaround, restrict access to the aesEncrypt method until a patch is available.Exploit
Fix
Inadequate Encryption Strength
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Simplesamlphp