CVE-2002-2309 — HIGH severity vulnerability (php.exe in PHP 3.0 through 4.2.2, when running on Apache, do)
php.exe in PHP 3.0 through 4.2.2, when running on Apache, does not terminate properly, which allows remote attackers to cause a denial of service via a direct request without arguments.
| CVE ID | CVE-2002-2309 |
|---|---|
| Severity | HIGH |
| CVSS score | 7.8 |
| CVSS vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
| CWE | CWE-399 |
| Status | Modified |
| Published | 2002-12-31 |
| Last modified | 2026-04-16 |
| Description | php.exe in PHP 3.0 through 4.2.2, when running on Apache, does not terminate properly, which allows remote attackers to cause a denial of service via a direct request without arguments. |
| Source | NIST National Vulnerability Database |
🔍 Search all vulnerabilities →
$999/mo
Try CVECheck →