Description

The Apache module for PHP 4.0.0 through PHP 4.0.4, when disabled with the 'engine = off' option for a virtual host, may disable PHP for other virtual hosts, which could cause Apache to serve the source code of PHP scripts.

Remediation

References

CVE-2001-1385

Related Vulnerabilities

WordPress Plugin WP Fastest Cache Multiple Vulnerabilities (0.8.5.7)

WordPress Plugin Twitter Button by BestWebSoft Cross-Site Scripting (2.54)

MySQL CVE-2014-6478 Vulnerability (CVE-2014-6478)

WordPress Plugin WordPress Email Marketing-WP Email Capture Multiple Vulnerabilities (3.9.3)

Dolibarr Improper Input Validation Vulnerability (CVE-2013-2093)

Severity

Medium

Classification

CVE-2001-1385

Tags

Missing Update Known Vulnerabilities