[HackerNews] Apache Warns of Zero-Day Exploit in the Wild — Patch You Web Servers Now!

Apache has issued patches to address two security vulnerabilities, including a path traversal and file disclosure flaw in its HTTP server that it said is being actively exploited in the wild.
“A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49. An attacker could use a path traversal attack to map URLs to files outside the expected document root,” the open-source

Source: Read More (The Hacker News)

You might be interested in …

[SecurityWeek] China-Linked Cyberespionage Operation Suggests Interest in SCADA Systems

All posts, Security Week

A cyberespionage group that appears to be based in China has been seen targeting critical infrastructure organizations in Southeast Asia, and the attackers may be interested in industrial control systems (ICS). read more Source: Read More (SecurityWeek RSS Feed)

Read More

[SANS ISC] Video: CyberChef BASE85 Decoding, (Sun, Jul 18th)

All posts, Sans-ISC

In this video, I show how to decode the sample of Xavier’s diary entry “Multiple BaseXX Obfuscations” with CyberChef. The CyberChef recipe I created can be found here on pastebin.   Didier Stevens Senior handler Microsoft MVP blog.DidierStevens.com (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Source: Read More (SANS […]

Read More

[BleepingComputer] New Windows PrintNightmare zero-days get free unofficial patch

A free unofficial patch has been released to protect Windows users from all new PrintNightmare zero-day vulnerabilities discovered since June. […] Source: Read More (BleepingComputer)

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.