PHP 4.3.4 and earlier in Apache 1.x and 2.x (mod_php) can leak global variables between virtual hosts that are handled by the same Apache child process but have different settings, which could allow remote attackers to obtain sensitive information.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Http_server | Apache | 1.0 (including) | 1.0 (including) |
Http_server | Apache | 1.0.2 (including) | 1.0.2 (including) |
Http_server | Apache | 1.0.3 (including) | 1.0.3 (including) |
Http_server | Apache | 1.0.5 (including) | 1.0.5 (including) |
Http_server | Apache | 1.1 (including) | 1.1 (including) |
Http_server | Apache | 1.1.1 (including) | 1.1.1 (including) |
Http_server | Apache | 1.2 (including) | 1.2 (including) |
Http_server | Apache | 1.2.5 (including) | 1.2.5 (including) |
Http_server | Apache | 1.3 (including) | 1.3 (including) |
Http_server | Apache | 1.3.1 (including) | 1.3.1 (including) |
Http_server | Apache | 1.3.3 (including) | 1.3.3 (including) |
Http_server | Apache | 1.3.4 (including) | 1.3.4 (including) |
Http_server | Apache | 1.3.6 (including) | 1.3.6 (including) |
Http_server | Apache | 1.3.7 (including) | 1.3.7 (including) |
Http_server | Apache | 1.3.9 (including) | 1.3.9 (including) |
Http_server | Apache | 1.3.11 (including) | 1.3.11 (including) |
Http_server | Apache | 1.3.12 (including) | 1.3.12 (including) |
Http_server | Apache | 1.3.14 (including) | 1.3.14 (including) |
Http_server | Apache | 1.3.17 (including) | 1.3.17 (including) |
Http_server | Apache | 1.3.18 (including) | 1.3.18 (including) |
Http_server | Apache | 1.3.19 (including) | 1.3.19 (including) |
Http_server | Apache | 1.3.20 (including) | 1.3.20 (including) |
Http_server | Apache | 1.3.22 (including) | 1.3.22 (including) |
Http_server | Apache | 1.3.23 (including) | 1.3.23 (including) |
Http_server | Apache | 1.3.24 (including) | 1.3.24 (including) |
Http_server | Apache | 1.3.25 (including) | 1.3.25 (including) |
Http_server | Apache | 1.3.26 (including) | 1.3.26 (including) |
Http_server | Apache | 1.3.27 (including) | 1.3.27 (including) |
Http_server | Apache | 1.3.28 (including) | 1.3.28 (including) |
Http_server | Apache | 1.3.29 (including) | 1.3.29 (including) |
Http_server | Apache | 2.0 (including) | 2.0 (including) |
Http_server | Apache | 2.0.9 (including) | 2.0.9 (including) |
Http_server | Apache | 2.0.28 (including) | 2.0.28 (including) |
Http_server | Apache | 2.0.28-beta (including) | 2.0.28-beta (including) |
Http_server | Apache | 2.0.32 (including) | 2.0.32 (including) |
Http_server | Apache | 2.0.35 (including) | 2.0.35 (including) |
Http_server | Apache | 2.0.36 (including) | 2.0.36 (including) |
Http_server | Apache | 2.0.37 (including) | 2.0.37 (including) |
Http_server | Apache | 2.0.38 (including) | 2.0.38 (including) |
Http_server | Apache | 2.0.39 (including) | 2.0.39 (including) |
Http_server | Apache | 2.0.40 (including) | 2.0.40 (including) |
Http_server | Apache | 2.0.41 (including) | 2.0.41 (including) |
Http_server | Apache | 2.0.42 (including) | 2.0.42 (including) |
Http_server | Apache | 2.0.43 (including) | 2.0.43 (including) |
Http_server | Apache | 2.0.44 (including) | 2.0.44 (including) |
Http_server | Apache | 2.0.45 (including) | 2.0.45 (including) |
Http_server | Apache | 2.0.46 (including) | 2.0.46 (including) |
Http_server | Apache | 2.0.47 (including) | 2.0.47 (including) |
Http_server | Apache | 2.0.48 (including) | 2.0.48 (including) |
Http_server | Ibm | 1.3.19 (including) | 1.3.19 (including) |