A flaw in popular open source web server software, Apache HTTP Server, could enable hackers to access and take control of databases, say Australian security researchers.
By submitting your email address, you agree to receive emails regarding relevant topic offers from TechTarget and its partners. You can withdraw your consent at any time. Contact TechTarget at 275 Grove Street, Newton, MA.
The flaw in the mod_isapi module of Apache was discovered by security researcher Brett Gervasoni of Sense of Security Labs.
Successful exploitation results in the execution of arbitrary code with system privileges to access, modify or delete data, according to Sense of Security.
The flaw affects Apache version 2.2.14 and possibly other earlier versions, the company said, and all users are advised to update to the latest version 2.2.15, which fixes the vulnerability.