Serious vulnerabilities were discovered in the Apache HTTP Server on a Windows operating system. The affected versions are 2.2.0, 2.2.2, 2.2.3, 2.2.4, 2.2.5, 2.2.6, 2.2.8, 2.2.9, 2.2.11, 2.2.12, 2.2.13, and 2.2.14. Administrators can fix the problem by upgrading to version 2.2.15. The problem is said to be located at mod_isapi, a core module of the Apache package.