Security News

"Zealot" Apache Struts Attacks Abuses NSA Exploits
2017-12-18 15:47

A sophisticated multi-staged Apache Struts cyber attack campaign is abusing NSA-linked exploits to target internal networks, researchers from F5 Networks have discovered. read more

Critical Vulnerabilities Patched in Apache CouchDB
2017-11-16 11:18

An update released last week for Apache CouchDB patched critical vulnerabilities that could have been exploited by malicious actors for privilege escalation and code execution on a significant...

Code Execution Flaws Patched in Apache OpenOffice
2017-10-30 09:21

Researchers at Cisco Talos have discovered three vulnerabilities in Apache OpenOffice that can be exploited by malicious actors for remote code execution using specially crafted document files. read more

Apache OpenOffice Update Patches Four Vulnerabilities
2017-10-28 11:00

Apache OpenOffice patches four vulnerabilities tied its suite of free office applications impacting it word processing and graphics applications.

Apache Tomcat Patches Important Remote Code Execution Flaw
2017-10-05 04:16

The Apache Tomcat team has recently patched several security vulnerabilities in Apache Tomcat, one of which could allow an unauthorised attacker to execute malicious code on affected servers...

Code Execution Flaws Patched in Apache Tomcat
2017-10-04 18:58

Several vulnerabilities, including ones that allow remote attackers to execute arbitrary code, have been patched in recent weeks in Apache Tomcat. read more

Oracle Patches Apache Struts, Reminds Users to Update Equifax Bug
2017-09-26 18:28

Oracle released fixes for a handful of recently patched Apache Struts 2 vulnerabilities late last week.

Oracle Releases Patches for Exploited Apache Struts Flaw
2017-09-25 15:36

Oracle has released patches for many of its products to address several vulnerabilities in the Apache Struts 2 framework, including one that has been exploited in the wild for the past few weeks. read more

Optionsbleed bug makes Apache HTTP Server leak data from memory
2017-09-20 20:16

On Monday, security researcher Hanno Böck detailed a memory-leaking vulnerability in Apache HTTP Server that’s similar to the infamous OpenSSL Heartbleed bug uncovered in April 2014. Unlike...

'Optionsbleed' Flaw Causes Apache to Leak Data
2017-09-20 09:52

A vulnerability found in Apache HTTP Server (httpd) can cause certain systems to leak potentially sensitive data in response to HTTP OPTIONS requests, a researcher warned. read more