Description
Apache HTTP Server, when running on Linux with a document root on a Windows share mounted using smbfs, allows remote attackers to obtain unprocessed content such as source files for .php programs via a trailing "\" (backslash), which is not handled by the intended AddType directive.
Remediation
References
Related Vulnerabilities
PHP Resource Management Errors Vulnerability (CVE-2012-0789)
Drupal Files or Directories Accessible to External Parties Vulnerability (CVE-2017-6922)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32477)
Oracle Database Server CVE-2015-0483 Vulnerability (CVE-2015-0483)