Description

Unknown vulnerability in CGI module for PHP 4.3.0 allows attackers to access arbitrary files as the PHP user, and possibly execute PHP code, by bypassing the CGI force redirect settings (cgi.force_redirect or --enable-force-cgi-redirect).

Remediation

References

CVE-2003-0097

Related Vulnerabilities

WordPress Plugin WP Subtitle Unspecified Vulnerability (2.5)

WordPress 4.7.x Multiple Vulnerabilities (4.7 - 4.7.25)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-3181)

WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (1.2.05.20)

LiteSpeed Web Server Out-of-bounds Read Vulnerability (CVE-2004-0112)

Severity

High

Classification

CVE-2003-0097

Tags

Missing Update Known Vulnerabilities