Language Selection

English French German Italian Portuguese Spanish

Apache bug prompts update advice

Filed under
Software
Security
Web

IT security company Sense of Security has discovered a serious bug in Apache's HTTP web server, which could allow a remote attacker to gain complete control of a database.

Discovered by the company's security consultant Brett Gervasoni, the vulnerability exists in Apache's core "mod_isapi" module. By exploiting the module, an attacker could remotely gain system privileges that would compromise data security.

Users of Apache 2.2.14 and earlier are advised to upgrade to Apache 2.2.15, which fixes the exploit.

According to Sense of Security spokesperson Jason Edelstein, Apache is one of the most popular pieces of web server software used today and the vulnerability was one of the most significant bugs in Apache for years.

rest here




More in Tux Machines

Android Leftovers

Linux Devices

Red Hat and Fedora

GitHub's Atom and GitHub Enterprise 2.5

  • GitHub's Atom 1.5 Hackable Text Editor Out Now, Atom 1.6 Enters Beta Testing
    On February 9, 2016, GitHub's devs made some big announcements for its awesome and acclaimed Atom open-source hackable text editor, which reached stable version 1.5 for all supported operating systems.
  • Big? GitHub Enterprise 2.5 thinks massive
    Keeping up its push to be an enterprise presence, GitHub has announced the latest version of the for-pay, enterprise edition of its code-hosting platform. The company says GitHub Enterprise 2.5's focus is "companies operating at massive scale" -- enterprises with more than 10,000 developers and exponential year-over-year growth. The new toolset for GitHub Enterprise 2.5 helps large teams add new users, collaborate safely on large projects, and deal with GitHub-related performance issues that can crop up around such large projects.