Apache flaw threatens data security, say security researchers


Apache flaw threatens data security, say security researchers

Warwick Ashford

A flaw in popular open source web server software, Apache HTTP Server, could enable hackers to access and take control of databases, say Australian security researchers.

The flaw in the mod_isapi module of Apache was discovered by security researcher Brett Gervasoni of Sense of Security Labs.

Successful exploitation results in the execution of arbitrary code with system privileges to access, modify or delete data, according to Sense of Security.

The flaw affects Apache version 2.2.14 and possibly other earlier versions, the company said, and all users are advised to update to the latest version 2.2.15, which fixes the vulnerability.

Email Alerts

Register now to receive ComputerWeekly.com IT-related news, guides and more, delivered to your inbox.
By submitting your personal information, you agree to receive emails regarding relevant products and special offers from TechTarget and its partners. You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

COMMENTS powered by Disqus  //  Commenting policy