This vulnerability is only present when the register_globals PHP option is set to 'on'. This has not been the default setting for PHP installs since version 4.2.0 (22-Apr-2002).
Vendor URL: http://www.cmpro.org/
Secunia Advisory ID:20480
Other Advisory URL: http://sx02.coresec.de/advisories/149.txt
FrSIRT Advisory: ADV-2006-2166