Solution:
The PHP Group has released a new PHP version, 4.2.2, which incorporates a fix for the vulnerability. All users of affected PHP versions are encouraged to upgrade to this latest version. The downloads web site at: http://www.php.net/downloads.php has the new 4.2.2 source tarballs, Windows binaries, and source patches from 4.2.0 and 4.2.1 available for download.