By James Scout/ Oct 6, 2022

Microsoft Releases a ProxyNotShell Exchange Zero-Day Mitigation Update

Microsoft has updated the mitigations for the most recent ProxyNotShell zero-day Exchange vulnerabilities, tagged as CVE-2022-41040 and CVE-2022-41082.

Microsoft 

The initial recommendations were insufficient as researchers showed that they could be easily bypassed to allow new attacks exploiting the two bugs.

Microsoft 

Unfortunately, the current recommendations are still not enough, and the proposed mitigation can still allow ProxyNotShell attacks.

Microsoft 

CVE-2022-41040 is a server-side request forgery (SSRF) that allows privilege escalation and collaborates with CVE-2022-41082 to provide remote code execution on on-premise Exchange server deployments. It was privately reported to Microsoft three weeks ago.

Microsoft 

Both security issues come with a high-severity score mainly because exploiting them requires authentication.

Microsoft 

More Stories

Recent OIS Bugs on The iPhone 14 Pro have Nothing To Do With its Failure to Rank First in The DxOMark

State-Sponsored Hackers Likely Targeted 10 Organizations With M.S. Exchange 0-Day Exploits

‘Black Panther 2”Wakanda Forever Release Date, Cast