/?pid=microsoft-issues-advisory-about-two-0-day-vulnerabilities-in-exchange-23562

Updated:04:32 PM EDT Jun 10


this is ggmania.com subsite Microsoft issues advisory about two 0-day vulnerabilities in Exchange - TechAmok

Microsoft issues advisory about two 0-day vulnerabilities in Exchange - [security]
10:31 AM EDT - Sep,30 2022 - post a comment

Microsoft Exchange Server just can't seem to catch a break. Last year, the company warned about widespread attacks on on-premises servers and rushed to detail mitigations and release security updates within weeks. Now, it seems that the software is once again under attack via two 0-day vulnerabilities. As is usually the case, Exchange Online customers are not affected and don't need to do anything. The vulnerabilities apply to on-premises installations of Exchange Server 2013, 2016, and 2019. The two vulnerabilities are tagged CVE-2022-41040 and CVE-2022-41082, respectively. The former is a Server-Side Request Forgery (SSRF) vulnerability while the latter enables a malicious actor to carry out remote code execution (RCE) attacks via PowerShell. That said, an attacker would need authenticated access to Exchange Server to leverage either of the two vulnerabilities. Since there is no patch available yet, Microsoft understandably hasn't gone into the details of the attack chain. That said, it has noted a couple of mitigations which involve adding a blocking rule in URL Rewrite Instructions and blocking ports 5985 (HTTP) and 5986 (HTTPS) which are utilized by Remote PowerShell. Unfortunately, there are no specific hunting queries available for Microsoft Sentinel and Microsoft Defender for Endpoint can only detect post-exploitation activities, which also includes the detection of the "Chopper" web shell malware that has been spotted in in-the-wild attacks. Microsoft has assured customers that it is working on an "accelerated timeline" for a fix, but has not disclosed a tentative patch release date as of yet. You can find more details about mitigations and detections for the 0-day vulnerabilities here.

Short overview of recent news articles

Microsoft June 2025 Patch Tuesday fixes exploited zero-day, 66 flaws (Jun,10 2025 )

This Malware BREAKS WINDOWS! (Jun,10 2025 )

Reset Forgotten Password without Any Software, without USB drive in (Jun,10 2025 )

Microsoft Will Block Unsupported Hardware For Windows 11 (Jun,08 2025 )

Memory Wars! Apple vs Ryzen - Is Unified Memory Faster than Shared (Jun,08 2025 )

Predator: Killer of Killers - Exclusive Clip (2025) (Jun,06 2025 )

Enable Deep Effect on Samsung One Ui 7 (Jun,06 2025 )

Google Kills Off PayPal in Google Wallet (Jun,05 2025 )

Samsung's Next Flagship Foldable Will be Ultra (Jun,05 2025 )

Over 40 Malicious Chrome Extensions Mimic Popular Brands to Steal (Jun,05 2025 )

The Witcher IV - Unreal Engine 5 tech demo (Jun,03 2025 )

Nintendo Switch 2 Welcome Tour trailer (Jun,02 2025 )

Stranger Things 5 | Date Announcement | Netflix (Jun,01 2025 )

RTX 5060 Review... No wonder NVIDIA tried to stop us from talking (May,31 2025 )

Samsung Galaxy Watch 8 Classic Is Here - 7 New Updates (May,30 2025 )

Biggest Windows 11 24H2 May Update in the Main Release (May,30 2025 )

How Much Money Should You Spend on a Gaming PC? (May,29 2025 )

laud Note vs Note Pin - Which AI Voice Recorder To Choose (May,29 2025 )

Samsung One UI 8.0 vs One UI 7.0 - 25+ Changes (May,29 2025 )

SECRET CODE UPDATE for Samsung Galaxy Phone to Boost Performance & (May,28 2025 )

WhatsApp is finally available on iPad (May,27 2025 )

Simple Trick To Lower CPU Temperatures (May,27 2025 )

Alma & The Wolf - Official Trailer (2025) Ethan Embry, Li Jun Li, (May,26 2025 )

Change These Browser Security Settings NOW (May,25 2025 )

I NEED AMD to Seize This Moment - RX 9060XT (May,24 2025 )

Windows 98 with a G41 Core 2 Duo System (May,23 2025 )

Disable These Windows Settings for Better FPS! (May,23 2025 )

I Got the Golden GPU from Dubai (May,20 2025 )

Windows 10 emergency update KB5061768 fixes BitLocker boot loops - (May,19 2025 )

2025 AUDI S5 AVANT // 0-100 100-200 TOP SPEED POV & SOUND (May,19 2025 )

Jurassic World Rebirth - Official 'Alert' Teaser Trailer (2025) (May,18 2025 )

F1 25 and F1 The Movie hand in hand (May,18 2025 )

Everyone is Cooling Their PC Wrong (May,17 2025 )

M5 KILLER? Testing the MERCEDES E63S AMG! (May,16 2025 )

Samsung Fully Reveals 5.8mm-Thick Galaxy S25 Edge (May,16 2025 )

Apple Intros New Accessibility Apps, Plus Accessibility "Labels" (May,16 2025 )

Americana - Official Trailer (2025) Sydney Sweeney, Halsey, Simon (May,16 2025 )

Aston Martin x Apple CarPlay Ultra - Next generation of automotive (May,16 2025 )

Google TAG deleted 23,000+ YouTube channels in January, February, (May,15 2025 )

NVIDIA GeForce Game Ready 576.40 WHQL Driver Released (May,14 2025 )

F1 - Official Trailer #2 (2025) Brad Pitt, Damson Idris, Kerry (May,13 2025 )

The Old Guard 2 - Official Trailer (2025) Charlize Theron, KiKi (May,11 2025 )

I think I know why Ryzen 9000 Series CPUs are Dying...(!) (May,11 2025 )

Is Windows Defender good enough in 2025? (May,10 2025 )

AMD Adrenalin 25.5.1 Driver Released for Doom: The Dark Ages (May,09 2025 )

Ripple SEC Grip OVER, XRP Freedom of USE, Market MODE BULL RUN (May,09 2025 )

"Is x86 Actually Screwed?" ft. Wendell of Level1 Techs - (May,08 2025 )

Android's New Design Guidelines Leaked (May,07 2025 )

Grand Theft Auto VI trailer #2 (May,06 2025 )

Microsoft's Dirty Secret: Your Old PC is Now Trash! (May,05 2025 )

>> News Archive <<

TechAmok - Privacy Policy        loading time:0.01secs