CVE-2002-0249

2002-05-29T04:00:00
ID CVE-2002-0249
Type cve
Reporter cve@mitre.org
Modified 2016-10-18T02:17:00

Description

PHP for Windows, when installed on Apache 2.0.28 beta as a standalone CGI module, allows remote attackers to obtain the physical path of the php.exe via a request with malformed arguments such as /123, which leaks the pathname in the error message.