All courses
Resource hub
Featured resource
Tech Upskilling Playbook 2025
Tech Upskilling Playbook

Build future-ready tech teams and hit key business milestones with seven proven plays from industry leaders.

Learn more
Hamburger Icon
  • Labs icon Lab
  • Security
Google Cloud Platform icon
Labs

CVE-2021-42013 Apache HTTP Server: Emulation and Detection

In this lab, you’ll practice vulnerability management by assessing, testing, and mitigating a web server based path traversal and remote code execution vulnerability. When you’re finished, you’ll be able to detect exploitation attempts and re-configure an Apache HTTP server so that it's protected against CVE-2021-42013.

Get started Contact sales
Google Cloud Platform icon
Labs

Path Info

Level
Clock icon Beginner
Duration
Clock icon 1h 10m
Last updated
Clock icon Aug 04, 2025

Contact sales

By filling out this form and clicking submit, you acknowledge our privacy policy.

Table of Contents

  1. Challenge

    Getting Started in the Lab Environment

    Just like the universe, your lab is being created from nothing. That can take a couple of minutes, so start here with an explanation of the lab environment and your initial instructions, and you'll be ready to hit the ground running as soon as the sparks stop fizzing off the virtual hard drives.

  2. Challenge

    Emulate

    Determine if the local Apache web server is vulnerable to CVE-2021-42013 by launching an nmap version scan, then prove that the vulnerability is exploitable by testing for path traversal and remote code execution.

  3. Challenge

    Detect

    Access the web server and use native Linux tools to explore access and error logs for attempts to exploit the CVE-2021-42013 vulnerability.

  4. Challenge

    Protect

    Modify the httpd configuration file to mitigate the CVE-2021-42013 vulnerability.

  5. Challenge

    The Last Challenge

    Welcome to the final challenge! This is your last chance to experiment in the environment. Clicking Finish Lab will end this little world that flittered into existence just for you.

Matthew Lloyd Davies - Labs - Matthew
Author
Matthew Lloyd Davies

Matt has a degree in Chemical engineering and a PhD in mathematical chemistry. He is also a GIAC certified incident handler and penetration tester and has regulated cyber security in the UK civil nuclear sector for many years.

What's a lab?

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Provided environment for hands-on practice

We will provide the credentials and environment necessary for you to practice right within your browser.

Guided walkthrough

Follow along with the author’s guided walkthrough and build something new in your provided environment!

Did you know?

On average, you retain 75% more of your learning if you get time for practice.
Ready to get started?
View individual plans View team plans