Wednesday, March 10, 2010

Serious Apache Exploit Discovered

  An IT security company has discovered a serious exploit in Apache's HTTP web server, which could allow a remote attacker to gain complete control of a database. ZDNet reports the vulnerability exists in Apache's core mod_isapi module. By exploiting the module, an attacker could remotely gain system privileges that would compromise data security. Users of Apache 2.2.14 and earlier are advised to upgrade to Apache 2.2.15, which fixes the exploit.
  Note: according to the advisory, this exploit is exclusive to Windows

Read more: Slashdot

Posted via email from jasper22's posterous