ZDNet

Apache web server bug grants root access on shared hosting environments

This week, the Apache Software Foundation has patched a severe vulnerability in the Apache (httpd) web server project that could --under certain circumstances-- allow rogue server scripts to execute ...
InfoWorld

Unpatched Apache reverse proxy flaw allows access to internal network

A yet-to-be-patched flaw discovered in the Apache HTTP server allows attackers to access protected resources on the internal network if some rewrite rules are not defined properly. The vulnerability ...
Network World

Unprotected Apache server status pages put popular websites at risk

Many Apache Web servers, including those hosting some popular websites, expose information about the internal structure of the sites they host, the IP (Internet Protocol) addresses of their visitors, ...
Ars Technica

Serious Apache server bug gives root to baddies in shared host environments

The Apache HTTP Server, the Internet’s most widely used Web server, just fixed a serious vulnerability that makes it possible for untrusted users or software to gain unfettered control of the machine ...
Bleeping Computer

Apache Bug Lets Normal Users Gain Root Access Via Scripts

A privilege escalation vulnerability of important severity in the Apache HTTP server allowing users with the right to write and run scripts to gain root on Unix systems was fixed in Apache httpd ...
Ars Technica

Apache: Cannot access one specific folder in /html when logged in via VPN?

We have an Apache web server setup and one of the subfolders is inaccessible if you are logged into the network via VPN. This has to be an issue with Apache, I just can't find the setting for it. I've ...
Bleeping Computer

Apache fixes actively exploited zero-day vulnerability, patch now

The Apache Software Foundation has released version 2.4.50 of the HTTP Web Server to address two vulnerabilities, one of which is an actively exploited path traversal and file disclosure flaw. The ...