The disclosure is the latest in a string of serious vulnerabilities to surface in the market-leading enterprise mail server and follows a recent barrage of attacks targeting systems unpatched against ‘ProxyShell’ vulnerabilities. RELATED Microsoft warns of critical Azure Cloud vulnerability impacting Cosmos DB accounts “Furthermore, it may be possible to use the ProxyToken bug to perform other illicit modifications to Exchange mailbox configuration,” ZDI communications manager Dustin Childs told The Daily Swig.ĭubbed ‘ProxyToken’, the flaw ( CVE-2021-33766) was reported to the Zero Day Initiative in March 2021 by Le Xuan Tuyen of the Information Security Center of Vietnam Posts and Telecommunications Group (VNPT-ISC). The high severity flaw (CVSS 7.3) means unauthenticated assailants can install a forwarding rule on victims’ mailboxes that forwards incoming emails to their own account, according to a blog post published yesterday (August 30) by Trend Micro’s Zero Day Initiative (ZDI). UPDATED Microsoft has patched a fresh security vulnerability in Exchange Server that enables attackers to bypass authentication and snoop on employee emails. Patched authentication bypass comes in wake of widespread exploitation of ‘ProxyShell’ vulnerabilities
0 kommentar(er)
