Sense of Security, a firm specializing in computer security, has discovered a critical flaw in the Apache module mod_isapi. It is therefore imperative to use version 2.2.15 which corrects the problem.

Critical flaw
The vulnerability, which affects only installed on Windows servers, allowing hackers to take complete control of the web server remotely by giving them the highest privileges. It is thus possible to insert a code referring credit cards used on the site for malicious individuals.

Update strongly recommended
It had been years since we had not seen a hole like this on Apache. All versions less than or equal to 2.2.14 seemed concerned and even if it requires advanced knowledge to exploit this issue, it is preferable that companies make their systems up to date. After all, a proof of concept can already be downloaded and greed motivates more experienced hacker.