pavery wrote:
> Thanks for your quick response - I appreciate it. The security issues
> in httpd2-2.2.22 were pointed out to me during recent vulnerability
> scans of our servers, and have been identified in the CVE listings of
> the National Vulnerabilities Database: ‘CVE - CVE-2012-3499’
> (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3499)
BTW, were the vulnerabilities exposed as actual live problems, or simply
by somebody reading version numbers?
If the former, it implies you haven’t been applying security patches
regularly, which is definitely the most important thing to do.
If the latter, ‘somebody’ needs to improve their techniques!