Serious Apache Exploit Discovered

Serious Apache Exploit Discovered 160

Posted by Soulskill on Monday March 08, 2010 @09:58AM from the time-to-update dept.

bennyboy64 writes "An IT security company has discovered a serious exploit in Apache's HTTP web server, which could allow a remote attacker to gain complete control of a database. ZDNet reports the vulnerability exists in Apache's core mod_isapi module. By exploiting the module, an attacker could remotely gain system privileges that would compromise data security. Users of Apache 2.2.14 and earlier are advised to upgrade to Apache 2.2.15, which fixes the exploit." Note: according to the advisory, this exploit is exclusive to Windows.

Serious Apache Exploit Discovered

This discussion has been archived. No new comments can be posted.

Search 160 Comments Log In/Create an Account

Comments Filter:

It's unanimous! (Score:5, Funny)

by ipquickly ( 1562169 ) writes: on Monday March 08, 2010 @10:14AM (#31400206) Homepage

7 out of the first 8 posts agree that this is Windows only.

Update to 2.2.15 (Score:2, Funny)

by blai ( 1380673 ) writes: on Monday March 08, 2010 @10:15AM (#31400216)

But I don't want to restart my Windows :\

Re:It's unanimous! (Score:5, Funny)

by rvw ( 755107 ) writes: on Monday March 08, 2010 @10:25AM (#31400302)

7 out of the first 8 posts agree that this is Windows only.
You must be using Windows Calculator!

You bastards gave me a heart attack! (Score:5, Funny)

by SlappyBastard ( 961143 ) writes: on Monday March 08, 2010 @10:31AM (#31400372) Homepage

I had to read the article to see it was Windows only . . . whew.

Gain Complete Control (Score:5, Funny)

by ArundelCastle ( 1581543 ) writes: on Monday March 08, 2010 @10:44AM (#31400484)

I would really like to make a shirt that says: "This T-shirt has a serious exploit that allows a remote attacker to gain complete control."
It should be printed around the bottom hem for maximum effect.
Could also work on tighty whiteys.
I said I'd like to make it, not wear it. :-)

Whose fault...? (Score:3, Funny)

by argent ( 18001 ) writes: <peter@@@slashdot...2006...taronga...com> on Monday March 08, 2010 @10:51AM (#31400538) Homepage Journal

I don't know whose fault it is but the idea of running ISS plugins under Apache on Windows scares me. Whose fault is it when you run naked through the "hot" ward snogging the e-bola patients? It's ironic that you end up getting sick because the pretty nurse you kissed had mono, but ... good lord, people...

Thanks, jackass. (Score:3, Funny)

by CAIMLAS ( 41445 ) writes: on Monday March 08, 2010 @11:22AM (#31400876)

Thanks, jackass. Just what I wanted on a Monday morning: to update a half dozen Internet-facing source-based systems. Of course, it was a false alarm: submitter was too much of a toolbag to mention it was Windows-only.
(And, it being a Monday morning, I didn't initially notice the mention of mod_isapi. Of course.)

Re:Note: Apache ON WINDOWS (Score:3, Funny)

by 1s44c ( 552956 ) writes: on Monday March 08, 2010 @11:35AM (#31401040)

Muddling terms is how you end up with nonsense like not being able to tell programs from data.
But windows admins can't tell data from programs. They put both under c:\program files

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Serious Apache Exploit Discovered 160

Serious Apache Exploit Discovered More Login

Serious Apache Exploit Discovered

It's unanimous! (Score:5, Funny)

Update to 2.2.15 (Score:2, Funny)

Re:It's unanimous! (Score:5, Funny)

You bastards gave me a heart attack! (Score:5, Funny)

Gain Complete Control (Score:5, Funny)

Whose fault...? (Score:3, Funny)

Thanks, jackass. (Score:3, Funny)

Re:Note: Apache ON WINDOWS (Score:3, Funny)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot