Two security alerts about new vulnerabilities affecting the popular open-source Apache Web Server have been posted by two groups today. The nonprofit Apache HTTP Server Project group has issued a bulletin about a vulnerability that can allow distributed denial-of-service attacks in . . .
Two security alerts about new vulnerabilities affecting the popular open-source Apache Web Server have been posted by two groups today. The nonprofit Apache HTTP Server Project group has issued a bulletin about a vulnerability that can allow distributed denial-of-service attacks in Apache Versions 1.3, including 1.3.24, and Apache 2, including all versions up to 2.0.36.

The Apache Project said in the announcement that an Internet Security Systems Inc. (ISS) patch posted earlier in the day for an Apache vulnerability does not fix the denial-of-service problem. A patch for that problem is expected to be ready by tonight on the group's Web site.

The link for this article located at ComputerWorld is no longer available.