• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

PHP Soap Engine Make_HTTP_Soap_Request Weak Nonce HTTP Authentication Weakness

PHP Soap Engine is prone to an authentication weakness.

Successfully exploiting this issue would allow an attacker to obtain information about the nonce used for the digest authentication. Information obtained may allow the attacker to bypass certain security restrictions and potentially gain unauthorized access to the affected application.