Serious Apache Exploit Discovered
bennyboy64 writes "An IT security company has discovered a serious exploit in Apache's HTTP web server, which could allow a remote attacker to gain complete control of a database. ZDNet reports the vulnerability exists in Apache's core mod_isapi module. By exploiting the module, an attacker could remotely gain system privileges that would compromise data security. Users of Apache 2.2.14 and earlier are advised to upgrade to Apache 2.2.15, which fixes the exploit."
Note: according to the advisory, this exploit is exclusive to Windows.
First post fuckers!
Amazing; usually we're all about the M$ bashing.
If you were blocking sigs, you wouldn't have to read this.
They only have a "sense of security" anyways.
Do you chase web hits? Who cares about Windows, moreover together with Apache httpd?
I was worried, up until it said it was exclusive to Windows! I knew there was a good reason I got off of Windows...
Welcome to Earth! Your journey from the planet of linux fantasy must have been a long one. Please, regail us more of this mystical place where zealot sysadmins determine corporate policy and "internal apps" are written presumably were first written in, presumably, php for windows.
no, seriously. I'd like to know exactly what sort of "company" you think actually your apocryphal scenario would actually apply to? if it was a company that did anything serious (like a small bank or insurnace company), you'd be out of a job in seconds unless your boss were a complete idiot. i'm guessing it's either some government back-office where a technology can get away with such incompetence and experimentation or a small software firm where the rest of the guys are savvy enough that it's ok with them. unless it's running a billion servers like amazon or google or whatever, i have yet to find a serious company for whom the relatively insignificant cost of the operating system on their matters two shits compared the very high costs of user training and retraining, administrator hiring and rehiring, and so forth.