I received a security scanned report on CiscoWorks server. The finding was in regards to Apache 1.3 HTTP Server Expect Header Cross-Site Scripting Vulnerability. I checked Apache version on my CiscoWorks server from Common Services > Software Center > Software Update. From Software Update Page - Products Installed section - CiscoWorks Common Services. From this last page, Apache package installed version is 2.0.4. Where and how can I verify Apache version (if any)? Is it possible to upgrade Apache to a newer version? If so, what are the procedures and expected downtime? Thank you in advance.