ZDNet

Apache's new security update for HTTP Server fixes two flaws

The Apache Software Foundation has released an update to address a critical flaw in its hugely popular web server that allows remote attackers to take control of a vulnerable system. The first Apache ...
Threat Post

Critical Apache HTTPD Server Bugs Could Lead to RCE, DoS

Don’t freak: It’s got nothing to do with Log4Shell, except it may be just as far-reaching as Log4j, given HTTPD’s tendency to tiptoe into software projects. Don’t duck at the latest mention of Apache: ...
Purdue University

Apache HTTPD – Security Levels

1 This can be done with an .htgroup file maintained and deployed to each tier by the developer (preferred) or as a static list maintained by Web Services. 2 Contact Web Services for assistance. I want ...
CSOonline

Unpatched Apache Reverse Proxy Flaw Allows Access to Internal Network

A yet-to-be-patched flaw discovered in the Apache HTTP server allows attackers to access protected resources on the internal network if some rewrite rules are not defined properly. The vulnerability ...
Threat Post

Critical SonicWall NAC Vulnerability Stems from Apache Mods

Researchers offer more detail on the bug, which can allow attackers to completely take over targets. Rapid7 has offered up more details on a SonicWall critical flaw that allows for unauthenticated ...