Microsoft Exchange RCE Bug Exploit Released By Researchers

Security researcher Janggggg recently released a proof-of-concept exploit for the Exchange RCE bug (an actively exploited vulnerability affecting Microsoft Exchange Severs).

The bug, which is being tracked as CBE-2021-42321, will affect in-premises Exchange Servers 2016 and 2019, respectively. While Microsoft urged administrators to fix the bug immediately, Microsoft stated, “We are aware of limited targeted attacks in the wild using one of the vulnerabilities (CVE-2021-42321), which is a post-authentication vulnerability in Exchange 2016 and 2019. Our recommendation is to install these updates immediately to protect your environment.”

For those who want to patch their servers, they can do so by generating a quick inventory list of all Exchange servers that need to be updated with the latest version of the Exchange Server Health Checker script.

Those who want to check if their servers have been compromised by the bug should run PowerShell queries on any Exchange server.

For more information, read the original story in Bleeping Computer.

Microsoft Exchange RCE Bug Exploit Released By Researchers

Top Stories

Iran threatens AI data centres amid escalating infrastructure conflict

Oracle begins mass layoffs to fund $156 billion AI infrastructure push

OpenAI brings in Smartly to shape how ads work inside ChatGPT

Quantum breakthrough researchers cut required qubits from millions to thousands

Anthropic coding tool exposes full source code again after packaging error

Cisco breach exposes 300+ repos after supply chain attack

Related Articles

OpenAI pushes “people-first” AI policy as scrutiny of leadership grows

ChatGPT loses ground as rivals gain share in U.S. chatbot market

Oracle begins mass layoffs to fund $156 billion AI infrastructure push

OpenAI brings in Smartly to shape how ads work inside ChatGPT

TND News Desk

TND News Desk

Jim Love

Follow Us

Popular categories

Tech News Delivered