CVE-2002-2029

Name of the Vulnerable Software and Affected Versions PHP (affected versions not specified)

Description The issue allows remote attackers to read arbitrary files and possibly execute arbitrary programs via an HTTP request for php.exe with a filename in the query string, specifically when PHP is installed on Windows with Apache and ScriptAlias for /php/ set to c:/php/.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.