The producer of the open-source Apache Web server software announced last week that there is a vulnerability in both the 1.3.24 and 2.0.36 versions. The Apache Group said the flaw could expose Web sites to a new type of denial-of-service attack or in some cases, to the possibility of a hacker being able to run their own software on an affected server. Full Story