News

Apache Flaw Affects Windows Implementations

A security company released information this week about what it calls an "extremely high risk" vulnerability involving the Apache open source Web server running on non-Unix platforms, such as Windows.

The vulnerability affects Apache 2.0 Server Software, according to its discoverers at PivX Solutions of Newport Beach, Calif. The vulnerability could allow attackers to damage a server and reveal sensitive data, according to the security company.

The flaw affects default installations of the Apache Web server in non-Unix platforms like Windows, IBM OS/2 and Novell Netware. The flaw does not appear to affect Unix or Linux platforms.

PivX notified the Apache Software Foundation, which maintains the open source Apache code, and the foundation produced a fixed version within 24 hours. The vulnerability and several other less serious security holes are patched in Apache 2.0.40.

Meanwhile, PivX also has a workaround for users, which is available at www.pivx.com.

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.

Featured

  • Office 365 Attack Simulator Now Supports Attachments

    The Attack Simulator in Office 365 tool has been updated and now has the ability to include message attachments in targeted campaigns, according to a Friday Microsoft announcement.

  • How To Disable Touch Input in Windows 10

    When the touchscreen on your Windows 10 laptop goes bad, there's no reason to throw that baby out with the bath water.

  • Microsoft Previews Windows VM Authentications via Azure Active Directory

    Microsoft on Thursday announced a preview of remote authentications into Windows-based Azure virtual machines (VMs) using Azure AD credentials.

  • Windows Server 20H1 Getting Smaller Containers and Faster PowerShell

    Microsoft is promising to deliver a smaller container size and improved PowerShell performance with its next release of Windows Server.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.