Microsoft Exchange RCE Bug Exploit Released By Researchers

Share post:

Security researcher Janggggg recently released a proof-of-concept exploit for the Exchange RCE bug (an actively exploited vulnerability affecting Microsoft Exchange Severs).

The bug, which is being tracked as CBE-2021-42321, will affect in-premises Exchange Servers 2016 and 2019, respectively. While Microsoft urged administrators to fix the bug immediately, Microsoft stated, “We are aware of limited targeted attacks in the wild using one of the vulnerabilities (CVE-2021-42321), which is a post-authentication vulnerability in Exchange 2016 and 2019. Our recommendation is to install these updates immediately to protect your environment.”

For those who want to patch their servers, they can do so by generating a quick inventory list of all Exchange servers that need to be updated with the latest version of the Exchange Server Health Checker script.

Those who want to check if their servers have been compromised by the bug should run PowerShell queries on any Exchange server.

For more information, read the original story in Bleeping Computer.

Featured Tech Jobs


Related articles

FTC says Microsoft’s layoffs at Activision Blizzard may threaten merger approval

The FTC has expressed dissatisfaction with Microsoft's layoffs at Activision Blizzard, challenging the integrity of the Microsoft-Activision deal....

Delaware court voids Musks $56 billion dollar compensation

Tesla's stock experienced a notable downturn following a Delaware court's decision to void CEO Elon Musk's massive $56...

IT World Canada strikes partnership with Canadian Cybersecurity Network

Goal is to make it easier for infosec pros to access each organization

Microsoft overtakes Apple as world’s most valuable company

In a notable shift in the tech industry, Microsoft has recently overtaken Apple to become the world's most...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways