Apache Users Urged to Patch Server Flaw
An exploit targeting the recently discovered Web server security vulnerability is now spreading on the Internet.
Sam Costello, IDG News Service
If users have put off patching their Apache Web servers against the vulnerability discovered Monday, they should wait no longer, as an exploit to attack the security hole is now circulating on the Internet, according to Oliver Friedrichs, director of engineering at SecurityFocus.
The exploit--a tool that makes attacking a vulnerability easier--was posted to the Bugtraq security e-mail list on Wednesday, Friedrichs said.
The existence of an exploit "makes the possibility of a worm that targets these [systems] more likely," he said.
The vulnerability was announced Monday by Internet Security Systems, and then expanded upon by the Apache Software Foundation. The organizations say the bug could allow an attacker to take control of an affected Web server. Because of a flaw in the way Apache handles uploads, an attacker could send a specially formed request to the server and either cause it to deny service to legitimate users or take the system over, both groups said.
More than 60 percent of the Web servers on the Internet use Apache, according to data from Web server monitoring firm Netcraft.
Lull Before Attacks
The Computer Emergency Response Team/Coordination Center (CERT/CC), a federally funded computer security body located at Pittsburgh's Carnegie Mellon University, and Internet Security Systems both updated their advisories on the vulnerability after the release of the exploit, urging users to patch their systems.
Despite the presence of an exploit, SecurityFocus hasn't seen increased attack activity focused at Apache systems, Friedrichs said. SecurityFocus, which is based in San Mateo, California, monitors the networks of over 9000 companies in over 145 countries for security data and then aggregates it to create a picture of global, regional, and industry-specific Internet security.
The dearth of attacks isn't surprising to Friedrichs, as there is usually a period of one to two weeks between vulnerability announcements and attacks, he said.
Though the exploit released Wednesday attacks only Apache installations running on the OpenBSD operating system, "it's not a monumental task ... for someone to modify it [to work with other operating systems]," he said.
Users should patch their systems immediately and check with their vendors for more information, Friedrichs said.
"People ... should be making the patching of their Apache servers a high priority," he said.
Full Windows 7 coverage
Laptop Showcase
Dell Fast Track
-
Free Next Day Business Shipping on Dell's Most Popular Systems
Over 35% off Dell’s most popular systems. Delivered in 48 hours with free next business day shipping! Ends 12/22 at 3 PM CST
People who read this also read:
Best Prices on Antivirus Software
Norton Antivirus 2010 (Full Product, 1 User)Price: $17.90
Anti-virus 2010 (OEM Product, 1 User)Price: $21.62
AntiVirus Plus 2010 - 3 Users (Full Product)Price: $11.95
AntiVirus 2010 (Full Product)Price: $24.95
Norton AntiVirus 2009 (Full Product)Price: $16.89
Anti-Virus 2009 (Full Product)Price: $15.04
- Perfect Printing Solutions Find just the right All-in-One Printer for you from HP. Visit the HP Resource Center.
- Acer Laptop Center Forget the Mouse...check out the next generation multi-gesture touch screen technology from Acer.
- Dell Shopping Center Check out great deals from Dell!
Cameras
Camcorders
Cell Phones
Components
Desktops
HDTV
Home Theater
GPS
Laptops
Monitors
MP3 Players
Networking &
Printers
Storage











