Language Selection

English French German Italian Portuguese Spanish

Apache bug prompts update advice

Filed under
Software
Security
Web

IT security company Sense of Security has discovered a serious bug in Apache's HTTP web server, which could allow a remote attacker to gain complete control of a database.

Discovered by the company's security consultant Brett Gervasoni, the vulnerability exists in Apache's core "mod_isapi" module. By exploiting the module, an attacker could remotely gain system privileges that would compromise data security.

Users of Apache 2.2.14 and earlier are advised to upgrade to Apache 2.2.15, which fixes the exploit.

According to Sense of Security spokesperson Jason Edelstein, Apache is one of the most popular pieces of web server software used today and the vulnerability was one of the most significant bugs in Apache for years.

rest here




More in Tux Machines

4MLinux 12.0 Beta Arrives with Better Support for Watching and Downloading YouTube Videos

Zbigniew Konojacki had the pleasure of announcing today, March 28, on his Twitter account that the development cycle towards the 4MLinux 12.0 computer operating system has started with the Beta release for the 4MLinux Allinone Edition, 4MLinux Core, and 4MLinux distributions. Read more

Gorgeous Live Voyager X Distro Brings Xfce 4.12 to Ubuntu 14.04 LTS - Video and Screenshot Tour

On March 27, 2015, French developer Rodolphe Bachelart, the creator of the Live Voyager series of GNU/Linux distributions based on Ubuntu/Xubuntu, was proud to announce the immediate availability for download of a new computer operating system, Live Voyager X 14.04.4 LTS. Read more

Head 2 Head: Android OS vs. Chrome OS

A large part of Google’s OS success hasn’t been because of its awesomeness. No. Frankly, we think nothing speaks louder than the almighty dollar in this world. But both are “free,” right? So this is tie? Not really. Although Android is technically free since Google doesn’t charge device makers for it, there are costs associated with getting devices “certified.” Oh, yeah, and then there’s Apple and Microsoft, both of which get healthy payouts from device makers through patent lawsuits. Microsoft reportedly makes far more from Android sales than Windows Phone sales. You just generally don’t see the price because it’s abstracted by carriers. Chrome OS, on the other hand, actually is pretty much free. A top-ofthe-line Chromebook is $280, while a top-of-the-line Android phone full retail is usually $600. We’re giving this one to Chrome OS because if it’s generally cheaper for the builder, it’s cheaper for you. Read more