CVE-2021-26858 – post authentication arbitrary file write vulnerability in Exchange.CVE-2021-26857 – insecure deserialization in Unified Messaging allows remote code execution on Exchange sever.CVE-2021-26855 – allows an attacker to send specific HTTP requests and authenticate to the Exchange Server.
The four Zero Day Microsoft CVEs are as follows: The exploit utilizes 4 Zero Day vulnerabilities in Microsoft Exchange software, three in Exchange and one in Unified Messaging Services. These attacks are being carried out by the China nation/state sponsored hacking group known as Hafnium. Multiple news sources, security researchers and security agencies have reported on a new attack against tens, if not hundreds, of thousands of Internet accessible Exchange servers configured for Secure Sockets Layer (SSL)/Transport Layer Security (TLS) Outlook Web App (OWA) access.
0 kommentar(er)
