I have a customer that must be PCI certified.

They have two server in two different location running Symantec Endpoint Protection Small Business Edition Version 12.1 10000.157 RU1

After a Penetration test from the PCI auditor they told me that in each server I have two ports on the Apache Webserver that supports Trace and/or Track http methods and have to be fixed.

I have been reading a lot and I can't find first the command to test that are in risk or what to see in the output (curl and openssl command) and also I can't find the solutions because many site talk about how to fix the trace but not the track.

The ports that are having problem are the 8014 and 8445.

Any help I will really appreciate.

Sorry, I forget to ask something else, How can I know what version of Apache is running and how can I update it to the latest version?

That maybe can resolve this issue and anothers one.

Thanks

Start by upgrading to 12.1.4 as I believe Apache was updated as well.

Apache is customized by Symantec specifically for the SEPM so you shouldn't upgrade it as you will risk corruption.

Disable the trace method as per this document

Retina network security scan shows vulnerability on the server. Error:"Trace method must be disabled, port 8014"

Sorry, I forget to ask something else, How can I know what version of Apache is running and how can I update it to the latest version?

In SEP EE, open the Windows services list (Start > Run ... > services.msc) and look for "Symantec Endpoint Protection Manager Webserver". There you can see the exact Apache version. (In my SEP 12.1.4, it's 2.2.23.7.)

However, I don't know if that works on SEP SBE the same way.

However, as Brian says, it's not advisable to upgrade Apache.

Don't upgrade the Apache component independently.  It can only be upgraded correctly when the SEPM is upgraded.