CVE Vulnerabilities

CVE-2001-0108

Published: Mar 12, 2001 | Modified: Oct 10, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

PHP Apache module 4.0.4 and earlier allows remote attackers to bypass .htaccess access restrictions via a malformed HTTP request on an unrestricted page that causes PHP to use those access controls on the next page that is requested.

Affected Software

Name Vendor Start Version End Version
Php Php 4.0 4.0
Php Php 4.0.1 4.0.1
Php Php 4.0.3 4.0.3
Php Php 4.0.4 4.0.4

References