Virtual Host Misconfiguration Vulnerability in Apache PHP Module

Virtual Host Misconfiguration Vulnerability in Apache PHP Module

CVE-2001-1385 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The Apache module for PHP 4.0.0 through PHP 4.0.4, when disabled with the 'engine = off' option for a virtual host, may disable PHP for other virtual hosts, which could cause Apache to serve the source code of PHP scripts.

Learn more about our Cis Benchmark Audit For Apache Http Server.