CVE-2001-0108
PHP Apache module 4.0.4 and earlier allows remote attackers to bypass .htaccess access restrictions via a malformed HTTP request on an unrestricted page that causes PHP to use those access controls on the next page that is requested.
| Software | From | Fixed in |
|---|---|---|
| php / php | 4.0.4 | 4.0.4.x |
| php / php | 4.0 | 4.0.x |
| php / php | 4.0.1 | 4.0.1.x |
| php / php | 4.0.3 | 4.0.3.x |
| mandrakesoft / mandrake_linux | 7.2 | 7.2.x |
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000373
- http://marc.info/?l=bugtraq&m=97957961212852
- http://www.debian.org/security/2001/dsa-020
- http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-013.php3
- http://www.redhat.com/support/errata/RHSA-2000-136.html
- http://www.securityfocus.com/bid/2206
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5940
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime