Vulnerabilities > CVE-2002-2309 - Resource Management Errors vulnerability in PHP

047910
CVSS 7.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
COMPLETE
network
low complexity
php
CWE-399
exploit available

Summary

php.exe in PHP 3.0 through 4.2.2, when running on Apache, does not terminate properly, which allows remote attackers to cause a denial of service via a direct request without arguments.

Common Weakness Enumeration (CWE)

Exploit-Db

descriptionPHP Interpreter 3.0.x/4.0.x/4.1/4.2 Direct Invocation Denial Of Service. CVE-2002-2309. Dos exploit for unix platform
idEDB-ID:21632
last seen2016-02-02
modified2002-07-22
published2002-07-22
reporterMatthew Murphy
sourcehttps://www.exploit-db.com/download/21632/
titlePHP Interpreter 3.0.x/4.0.x/4.1/4.2 Direct Invocation Denial of Service