CVE-2002-0249

2002-05-29T00:00:00
ID CVE-2002-0249
Type cve
Reporter NVD
Modified 2016-10-17T22:17:35

Description

PHP for Windows, when installed on Apache 2.0.28 beta as a standalone CGI module, allows remote attackers to obtain the physical path of the php.exe via a request with malformed arguments such as /123, which leaks the pathname in the error message.