August 19, 2002

Patch posted for Apache hole

"A flaw has been discovered in the newest version of the Apache Web server that could allow an attacker to take control of a
user's system, prompting the release Friday of an upgrade to the software.

PivX Solutions, a network security consultancy in Newport Beach, California, disclosed the vulnerability Friday soon after an
upgrade to Apache Version 2.0 that fixes the hole was posted. The hole could let an attacker remotely access all the files on an
Apache 2.0 Web server, execute them, pass malicious code, and even shut down the system completely, said Geoff Shively,
who goes by the title "chief hacking officer" at PivX Solutions." More at PCWorld.


  • Security
Click Here!