IDG News Service – A yet-to-be-patched flaw discovered in the Apache HTTP server allows attackers to access protected resources on internal networks if some rewrite rules are not defined properly. The vulnerability affects Apache installations that operate in reverse proxy mode, a type of configuration used for load balancing, caching…
11.42.12 Apache HTTP Server “mod_proxy” Reverse Proxy Information Disclosure
CVEs: CVE: CVE-2011-3368 Platform: Cross Platform View full post on @RISK: The Consensus Security Alert View full post on National Cyber Security Gergory Evans
Oracle issues rare out-of-band update for Apache DDoS vulnerability
Oracle, the giant enterprise database company – and, of course, owner of the erstwhile Sun Microsystems – has just published an out-of-band security update. This is only the fifth time Oracle has issued an alert outside its routine quarterly patch cycle since introducing its own version of Patch Tuesday at…
11.36.7 Apache HTTP Server Denial of Service
CVEs: CVE: CVE-2011-3192 Platform: Cross Platform View full post on @RISK: The Consensus Security Alert View full post on National Cyber Security Gergory Evans