CVE-2002-1149 Information

Description

The installation procedure for Invision Board suggests that users install the phpinfo.php program under the web root which leaks sensitive information such as absolute pathnames OS information and PHP settings.

Reference

http://marc.info/?l=bugtraq&m=103290602609197&w=2 http://www.iss.net/security_center/static/10178.php http://www.osvdb.org/3356 http://www.securityfocus.com/bid/5789