Apache flaw threatens data security, say security researchers


Apache flaw threatens data security, say security researchers

Warwick Ashford

A flaw in popular open source web server software, Apache HTTP Server, could enable hackers to access and take control of databases, say Australian security researchers.

The flaw in the mod_isapi module of Apache was discovered by security researcher Brett Gervasoni of Sense of Security Labs.

Successful exploitation results in the execution of arbitrary code with system privileges to access, modify or delete data, according to Sense of Security.

The flaw affects Apache version 2.2.14 and possibly other earlier versions, the company said, and all users are advised to update to the latest version 2.2.15, which fixes the vulnerability.

Email Alerts

Register now to receive ComputerWeekly.com IT-related news, guides and more, delivered to your inbox.
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

COMMENTS powered by Disqus  //  Commenting policy