Apache issues anti-DoS patch
News The Apache Software Foundation has released a patch for its Apache 2.0 HTTP Server to thwart a "significant" denial-of-service vulnerability. Apache, which makes the popular open-source Web server application, released version 2.0.45 to fix a...
[April 4, 2003, 10:12]
High-risk flaws in corporate security revealed
News Apache mod_ssl CRL Handling Off-By-One Buffer Overflow: If a web server is running a version of mod_ssl prior to 2.0.54, it may be vulnerable to a buffer overflow attack that can allow an attacker to trigger a denial-of-service condition or...
[June 20, 2008, 8:17]
Apache patch covers HTTP security hole
News The new version of Apache also fixes a hole in the software authentication module that could let malicious users launch a limited denial-of-service attack that would prevent authorised users from logging on to the server under siege.
[May 30, 2003, 10:13]
Attacks increase on Apache servers
News That vulnerability can cause a denial of service event. This has been the case recently with a slew of Apache Web server vulnerabilities. ESecurityplanet.com has reported that the Apache software, which is used by about 60 percent of Web servers...
[December 11, 2002, 10:59]
Security warning too quick for comfort?
News Both ISS and the Apache Foundation released information Monday about a vulnerability that could allow vandals -- using a simple HTTP command -- to execute a so-called denial-of-service attack on the majority of the 10.4 million computers running...
[June 18, 2002, 9:21]
Apple patches critical OS X security flaws
News The vulnerabilities ranged from potentially letting an attacker launch a denial-of-service attack to taking control of a person's system remotely. This latest flaw could let an attacker launch a buffer overflow, or denial-of-service attack, that...
[December 1, 2005, 8:20]
Slapper worm grinds to a halt
News Commands sent to the network can cause a denial-of-service (DOS) attack by sending a deluge of data at a target, can execute code or can gather information. Known as Linux.Slapper.Worm, Slapper and Apache/mod_ssl, the worm's spread has fallen far...
[September 20, 2002, 13:32]
The latest top 10 Linux/Unix security holes
News If you do need to run Apache, there are things you can do to reduce the risk even if you can't patch it every time a new vulnerability is discovered: 1. BIND is critical because it's by far the most popular DNS in use around the world and is...
[November 4, 2003, 11:10]
Red Hat disputes CERT vulnerability figures
News Generally, many of the vulnerabilities in Linux/Unix based products are classified as local vulnerabilities, including privilege escalation, local denial of service and local exposure of sensitive data.
[January 6, 2006, 13:45]
