/>
X
Innovation

Apache bug prompts update advice

IT security company Sense of Security has discovered a serious bug in Apache's HTTP web server, which could allow a remote attacker to gain complete control of a database.
Written by Colin Ho, Contributor on

Discovered by the company's security consultant Brett Gervasoni, the vulnerability exists in Apache's core "mod_isapi" module. By exploiting the module, an attacker could remotely gain system privileges that would compromise data security.

Users of Apache 2.2.14 and earlier are advised to upgrade to Apache 2.2.15, which fixes the exploit.

According to Sense of Security spokesperson Jason Edelstein, Apache is one of the most popular pieces of web server software used today and the vulnerability was one of the most significant bugs in Apache for years.

For more on this story, read Apache bug prompts update advice on ZDNet Australia.
Editorial standards

Related

The 20 best Cyber Monday deals under $30
Amazon Fire TV Stick 4K

The 20 best Cyber Monday deals under $30

Live blog: 110+ of the best Cyber Monday deals
Large white Cyber Monday text with electronics behind it

Live blog: 110+ of the best Cyber Monday deals

The 57 best Cyber Monday deals on Amazon right now
Image of Amazon Echo Show 8 on a wooden table in front of a person cooking and folding pastry dough.

The 57 best Cyber Monday deals on Amazon right now