Microsoft urges Exchange admins to patch their on-prem servers now

Microsoft has issued an pressing safety replace to patch a excessive severity vulnerability that impacts a number of editions of their well-liked hosted email server Microsoft Exchange, and might be exploited to remotely execute code on susceptible servers.

According to Microsoft, the safety flaw, tracked as CVE-2021-42321, is attributable to improper validation of cmdlet arguments.

“We are conscious of restricted focused assaults within the wild utilizing considered one of [the] vulnerabilities (CVE-2021-42321), which is a post-authentication vulnerability in Exchange 2016 and 2019. Our advice is to set up these updates instantly to shield your setting,” shares Microsoft.

It goes on to add that the bug solely impacts on-premise Microsoft Exchange servers, together with these utilized by clients in Exchange Hybrid mode. Users of the Exchange Online service are already protected in opposition to exploitation makes an attempt, and might safely ignore the advisory.

Reporting on the event, BleepingComputer notes that Microsoft Exchange has been on the receiving finish of two main campaigns, which have focused totally different, however associated vulnerabilities generally known as ProxyLogon and ProxyShell.

ProxyLogon was first exploited by state-sponsored menace actors again in March to deploy cryptominers, ransomware, and different malware. Then in August, attackers as soon as once more had been fast to capitalize after safety researchers managed to show a working exploit that consisted of three chained vulnerabilities in Exchange collectively referred to as ProxyShell.

Both points have since been addressed, however the brand new vulnerability has as soon as once more given menace actors a possibility to remotely assault unpatched servers, which might clarify the urgency in Microsoft’s attraction to get admins to replace their susceptible installations directly.

Shield your community in opposition to malicious site visitors with the assistance of those best firewall apps and services

https://www.techradar.com/information/microsoft-urges-exchange-admins-to-patch-their-on-prem-servers-now

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Related Posts

Microsoft 365 email review | TechRadar

No, a Government Scientist on Fauci’s Staff Can’t Avoid FOIA Email Requests

Enable Two-Factor Authentication (2FA) with Email Verification on NTA

Best Web Hosting Options for Small Businesses in 2023

Helm Personal Email Server » Gadget Flow

Neo email review | TechRadar