Serious Apache Exploit Discovered - Slashdot

Slashdot

Serious Apache Exploit Discovered 160

Posted by Soulskill on Monday March 08 2010, @09:58AM
from the time-to-update dept.

bennyboy64 writes "An IT security company has discovered a serious exploit in Apache's HTTP web server, which could allow a remote attacker to gain complete control of a database. ZDNet reports the vulnerability exists in Apache's core mod_isapi module. By exploiting the module, an attacker could remotely gain system privileges that would compromise data security. Users of Apache 2.2.14 and earlier are advised to upgrade to Apache 2.2.15, which fixes the exploit." Note: according to the advisory, this exploit is exclusive to Windows.

This discussion has been archived. No new comments can be posted.

Serious Apache Exploit Discovered

Search 160 Comments Log In/Create an Account

Comments Filter:

It's unanimous! (Score:5, Funny)

by ipquickly (1562169) writes: on Monday March 08 2010, @10:14AM (#31400206)

7 out of the first 8 posts agree that this is Windows only.

Share
twitter facebook
Update to 2.2.15 (Score:2, Funny)

by blai (1380673) writes: on Monday March 08 2010, @10:15AM (#31400216)

But I don't want to restart my Windows :\

Share
twitter facebook
Re:It's unanimous! (Score:5, Funny)

by rvw (755107) writes: on Monday March 08 2010, @10:25AM (#31400302)

7 out of the first 8 posts agree that this is Windows only.
You must be using Windows Calculator!

Parent Share
twitter facebook
You bastards gave me a heart attack! (Score:5, Funny)

by SlappyBastard (961143) writes: on Monday March 08 2010, @10:31AM (#31400372) Homepage

I had to read the article to see it was Windows only . . . whew.

Share
twitter facebook
Gain Complete Control (Score:5, Funny)

by ArundelCastle (1581543) writes: on Monday March 08 2010, @10:44AM (#31400484)

I would really like to make a shirt that says: "This T-shirt has a serious exploit that allows a remote attacker to gain complete control."
It should be printed around the bottom hem for maximum effect.
Could also work on tighty whiteys.
I said I'd like to make it, not wear it. :-)

Share
twitter facebook
Whose fault...? (Score:3, Funny)

by argent (18001) writes: <.moc.agnorat.6002.todhsals. .ta. .retep.> on Monday March 08 2010, @10:51AM (#31400538) Homepage Journal

I don't know whose fault it is but the idea of running ISS plugins under Apache on Windows scares me. Whose fault is it when you run naked through the "hot" ward snogging the e-bola patients? It's ironic that you end up getting sick because the pretty nurse you kissed had mono, but ... good lord, people...

Parent Share
twitter facebook
Thanks, jackass. (Score:3, Funny)

by CAIMLAS (41445) writes: on Monday March 08 2010, @11:22AM (#31400876) Homepage

Thanks, jackass. Just what I wanted on a Monday morning: to update a half dozen Internet-facing source-based systems. Of course, it was a false alarm: submitter was too much of a toolbag to mention it was Windows-only.
(And, it being a Monday morning, I didn't initially notice the mention of mod_isapi. Of course.)

Share
twitter facebook
Re:Note: Apache ON WINDOWS (Score:3, Funny)

by 1s44c (552956) writes: on Monday March 08 2010, @11:35AM (#31401040)

Muddling terms is how you end up with nonsense like not being able to tell programs from data.
But windows admins can't tell data from programs. They put both under c:\program files

Parent Share
twitter facebook

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Related Links Top of the: day, week, month.

1208 commentsInternet Responds To Racist Article, Gets Author Fired
1051 commentsRand Paul Has a Quick Fix For TSA: Pull the Plug
998 commentsHybrid Car Owners Not Likely To Buy Another Hybrid
911 commentsMandatory Brake-Override Proposed For All Cars
737 commentsGimp 2.8 Finally Released

Grandpa Charnock's Law: You never really learn to swear until you learn to drive. [I thought it was when your kids learned to drive. Ed.]