Ransomware Uses New Exploit to Bypass ProxyNotShell Mitigations

2 years ago
December 21, 2022
0 replies
3 views

+54

Jasper_The_Rasper
Moderator
11635 replies

By Ionut Arghire on December 21, 2022

Recent Play ransomware attacks targeting Exchange servers were observed using a new exploit chain that bypasses Microsoft’s ProxyNotShell mitigations.

Similar to the old ProxyShell vulnerability, ProxyNotShell consists of two security defects in Exchange Server: CVE-2022-41040, a server-side request forgery (SSRF) bug with a CVSS score of 8.8; and CVE-2022-41082, a remote code execution (RCE) flaw with a CVSS score of 8.0.

>> Full Article <<

Be the first to reply!

Reply

Related Topics

How to conditionally send out email based on output of a workspace in FME automation?icon

Create FME Server action based on whether features exist on transformer output porticon

Filter workspace output in FME Server Automationsicon

Automation sends 8 emails when I only want it to send 1 or 2icon

Can we plaster a HTML page in the email body for automations in FME Server 2019?icon

Sign up

Login to the community

Scanning file for viruses.

This file cannot be downloaded