Vulnerability in N/a
CVE-2002-2029
PHP, when installed on Windows with Apache and ScriptAlias for /php/ set to c:/php/, allows remote attackers to read arbitrary files and possibly execute arbitrary programs via an HTTP request for php.exe with a filename in the query strin…
EPSS: 0.606 (98.3th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- www.securiteam.com/windowsntfocus/5ZP030U60U.html (x_refsource_MISC)
- 3786 (vdb-entry, x_refsource_BID)
- apache-php-view-files(7815) (vdb-entry, x_refsource_XF)