Vulnerabilities > CVE-2001-0042 - Unspecified vulnerability in Apache Http Server 1.3

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
apache
exploit available

Summary

PHP 3.x (PHP3) on Apache 1.3.6 allows remote attackers to read arbitrary files via a modified .. (dot dot) attack containing "%5c" (encoded backslash) sequences.

Vulnerable Configurations

Part Description Count
Application
Apache
1

Exploit-Db

descriptionApache 1.3 Web Server with Php 3 File Disclosure Vulnerability. CVE-2001-0042. Remote exploits for multiple platform
idEDB-ID:20466
last seen2016-02-02
modified2000-12-06
published2000-12-06
reporterchina nsl
sourcehttps://www.exploit-db.com/download/20466/
titleApache 1.3 Web Server with Php 3 File Disclosure Vulnerability