[24176] in bugtraq
Security Advisory - #1
daemon@ATHENA.MIT.EDU (Paul Brereton)
Thu Feb 7 16:54:28 2002
Message-ID: <001301c1afce$f2930650$0201a8c0@PAULBRERETON>
From: "Paul Brereton" <brereton_paul@btopenworld.com>
To: <bugs@securitytracker.com>, <webmaster@hideaway.net>,
<contact@securitybugware.org>, <exploit@nstalker.com>,
<security@winnetmag.com>, <editors@apacheweek.com>,
<bugtraq@securityfocus.com>
Date: Thu, 7 Feb 2002 11:59:50 -0000
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Title : Windows Based PHP Leaks True Path
Author : Paul Brereton
E-Mail : brereton_paul@btopenworld.com
Summary : PHP for Windows reveals the true path where the program was
installed. This would be considered in most cases sensitive information.
Details : By appending /123 to the end of a PHP file such as
http://somehost/database.php/123 the PHP program will return its install
path:
The following message is displayed : Premature end of script headers:
C:/php/php.exe
Regards,
Paul Brereton.
