NuytsTech Security

CVE-2002-0121

by ·

PHP 4.0 through 4.1.1 stores session IDs in temporary files whose name contains the session ID, which allows local users to hijack web connections.

Date published : 2002-06-25

http://www.securityfocus.com/bid/3873

http://online.securityfocus.com/archive/1/250196

Tags: