CVE-2003-1307

NONECVSS 0.0

0.0

The mod_php module for the Apache HTTP Server allows local users with write access to PHP scripts to send signals to the server's process group and use the server's file descriptors, as demonstrated by sending a STOP signal, then intercepting incoming connections on the server's TCP port. NOTE: the PHP developer has disputed this vulnerability, saying "The opened file descriptors are opened by Apache. It is the job of Apache to protect them ... Not a bug in PHP.

🔗 References (12)

cve@mitrehttp://bugs.php.net/38915
cve@mitrehttp://hackerdom.ru/~dimmo/phpexpl.c
cve@mitrehttp://www.securityfocus.com/archive/1/348368
cve@mitrehttp://www.securityfocus.com/archive/1/449234/100/0/threaded
cve@mitrehttp://www.securityfocus.com/archive/1/449298/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/9302
af854a3a-2127-422b-91ae-364da2661108http://bugs.php.net/38915
af854a3a-2127-422b-91ae-364da2661108http://hackerdom.ru/~dimmo/phpexpl.c
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/348368
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/449234/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/449298/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/9302

Is Your Infrastructure Affected by CVE-2003-1307?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2003-1307

📅 Published

🔄 Last Modified

🔗 References (12)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2003-1307?