Microsoft Releases a ProxyNotShell Exchange Zero-Day Mitigation Update

[{"selector":"#anim-d8503062-ef1f-4465-88ac-f5d6f852d75e [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(13.190607924387479%, 0, 0)","translate3d(0%, 0, 0)"]},"delay":0,"duration":4000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"both"}] By James Scout/ Oct 6, 2022 Learn more

Microsoft

[{"selector":"#anim-3d17bf99-a6fc-472c-9012-3e7f2e95e5f5 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(11.873168223307152%, 0, 0)","translate3d(0%, 0, 0)"]},"delay":0,"duration":4000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"both"}] Microsoft has updated the mitigations for the most recent ProxyNotShell zero-day Exchange vulnerabilities, tagged as CVE-2022-41040 and CVE-2022-41082. Learn more

Microsoft

[{"selector":"#anim-a8f94142-5089-43ef-a127-ce8bc667916d [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(11.873168223307152%, 0, 0)","translate3d(0%, 0, 0)"]},"delay":0,"duration":4000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"both"}] The initial recommendations were insufficient as researchers showed that they could be easily bypassed to allow new attacks exploiting the two bugs. Learn more

Microsoft

[{"selector":"#anim-b103f6de-85d2-4645-b187-ab2ffc0853ca [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(11.873168223307152%, 0, 0)","translate3d(0%, 0, 0)"]},"delay":0,"duration":4000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"both"}] Unfortunately, the current recommendations are still not enough, and the proposed mitigation can still allow ProxyNotShell attacks. Learn more

Microsoft

[{"selector":"#anim-bc8e543a-2e86-44e4-9aa3-51362da534d0 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(11.873168223307152%, 0, 0)","translate3d(0%, 0, 0)"]},"delay":0,"duration":4000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"both"}] CVE-2022-41040 is a server-side request forgery (SSRF) that allows privilege escalation and collaborates with CVE-2022-41082 to provide remote code execution on on-premise Exchange server deployments. It was privately reported to Microsoft three weeks ago. Learn more

Microsoft

[{"selector":"#anim-6ae0e802-b5a8-4263-b2b1-09e2bcbad4f2 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(11.873168223307152%, 0, 0)","translate3d(0%, 0, 0)"]},"delay":0,"duration":4000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"both"}] Both security issues come with a high-severity score mainly because exploiting them requires authentication. Learn more

More Stories

[{"selector":"#anim-b9319535-0393-4615-988a-eee34312e931","keyframes":[{"transform":"scale(1)","offset":0},{"transform":"scale(1.15)","offset":0.33},{"transform":"scale(0.985)","offset":0.66},{"transform":"scale(1)","offset":1}],"delay":0,"duration":1200,"easing":"ease-in-out","fill":"both","iterations":1}] [{"selector":"#anim-079f312a-5c71-422b-9546-9da7785e0d54","keyframes":{"transform":["translate3d(60.65341%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":200,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-c2a8af09-ee0a-4747-a7b4-105cc2af05e8","keyframes":{"opacity":[0,1]},"delay":200,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-a3988226-ccab-4501-a2b1-2071c741cd4d","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":200,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] [{"selector":"#anim-7d3c77f4-e36b-4ca0-9424-c3c363321cc5","keyframes":{"transform":["translate3d(-70.82601%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":200,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-b9df512b-c9a9-492a-833f-f97bef40d75a","keyframes":{"opacity":[0,1]},"delay":200,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-60b839bd-5557-41a4-82cb-2d92e756cbb1","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":200,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] [{"selector":"#anim-3b1b0491-1dc0-44f4-ab7b-7af8e3d3a865","keyframes":{"transform":["translate3d(86.08871%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":200,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-fe945eb7-ee8b-4cac-b565-db9a37b94d16","keyframes":{"opacity":[0,1]},"delay":200,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-910a6e85-6712-4aae-8699-6278110e82fd","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":200,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] [{"selector":"#anim-ce316553-1fd7-467f-8524-7367bd8f5cc5","keyframes":{"opacity":[0,1]},"delay":1000,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-e2243094-27fe-4641-ad84-c6e1f378c322","keyframes":{"opacity":[0,1]},"delay":1000,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-41fc4e4e-332d-4626-bac2-24d4608acaea","keyframes":{"opacity":[0,1]},"delay":1000,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-de01e364-702b-4032-ab5a-eb9d7055f589","keyframes":{"opacity":[0,1]},"delay":1000,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-3f393bba-4c1e-42bf-8735-518edb776888","keyframes":{"opacity":[0,1]},"delay":1000,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-a215a7ed-fdf7-4ba8-8496-006b9ad50549","keyframes":{"opacity":[0,1]},"delay":1000,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] Recent OIS Bugs on The iPhone 14 Pro have Nothing To Do With its Failure to Rank First in The DxOMark State-Sponsored Hackers Likely Targeted 10 Organizations With M.S. Exchange 0-Day Exploits ‘Black Panther 2”Wakanda Forever Release Date, Cast