2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
58.6%
The apache2handler SAPI (sapi_apache2.c) in the Apache module (mod_php) for
PHP 5.x before 5.1.0 final and 4.4 before 4.4.1 final allows attackers to
cause a denial of service (segmentation fault) via the session.save_path
option in a .htaccess file or VirtualHost.