PHP 3.x (PHP3) on Apache 1.3.6 allows remote malicious users to read arbitrary files via a modified .. (dot dot) attack containing "%5c" (encoded backslash) sequences.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache http server 1.3 |