CVE-2001-1385
published 2001-01-12CVE-2001-1385: The Apache module for PHP 4.0.0 through PHP 4.0.4, when disabled with the 'engine = off' option for a virtual host, may disable PHP for other virtual hosts…
PriorityP417medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
1.61%
72.9th percentile
The Apache module for PHP 4.0.0 through PHP 4.0.4, when disabled with the 'engine = off' option for a virtual host, may disable PHP for other virtual hosts, which could cause Apache to serve the source code of PHP scripts.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mandrakesoft | mandrake_linux | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-3rrg-mmq3-p43v: The Apache module for PHP 4
ghsa_unreviewed·2022-04-30
CVE-2001-1385 [MEDIUM] GHSA-3rrg-mmq3-p43v: The Apache module for PHP 4
The Apache module for PHP 4.0.0 through PHP 4.0.4, when disabled with the 'engine = off' option for a virtual host, may disable PHP for other virtual hosts, which could cause Apache to serve the source code of PHP scripts.
Red Hat
security flaw
vendor_redhat·2001-01-12·CVSS 5.0
CVE-2001-1385 [MEDIUM] security flaw
security flaw
The Apache module for PHP 4.0.0 through PHP 4.0.4, when disabled with the 'engine = off' option for a virtual host, may disable PHP for other virtual hosts, which could cause Apache to serve the source code of PHP scripts.
No detection rules found.
No public exploits indexed.
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000373http://marc.info/?l=bugtraq&m=97957961212852http://www.debian.org/security/2001/dsa-020http://www.iss.net/security_center/static/5939.phphttp://www.linux-mandrake.com/en/security/2001/MDKSA-2001-013.php3http://www.redhat.com/support/errata/RHSA-2000-136.htmlhttp://www.securityfocus.com/bid/2205http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000373http://marc.info/?l=bugtraq&m=97957961212852http://www.debian.org/security/2001/dsa-020http://www.iss.net/security_center/static/5939.phphttp://www.linux-mandrake.com/en/security/2001/MDKSA-2001-013.php3http://www.redhat.com/support/errata/RHSA-2000-136.htmlhttp://www.securityfocus.com/bid/2205
2001-01-12
Published