all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Control Your Types or Get Pwned: Remote Code Execution in Exchange PowerShell Backend

Add to bookmarks
Nov. 16, 2022, 4:55 p.m. | Piotr Bazydło

Zero Day Initiative - Blog www.zerodayinitiative.com

By now you have likely already heard about the in-the-wild exploitation of Exchange Server, chaining CVE-2022-41040 and CVE-2022-41082. It was originally submitted to the ZDI program by the researcher known as “DA-0x43-Dx4-DA-Hx2-Tx2-TP-S-Q from GTSC”. After successful validation, it was immediately submitted to Microsoft. They patched both bugs along with several other Exchange vulnerabilities in the November Patch Tuesday release.

It is a beautiful chain, with an ingenious vector for gaining remote code execution. The tricky part is that it can …

backend blog post code code execution control exchange powershell pwned remote code execution

Visit resource

More from www.zerodayinitiative.com / Zero Day Initiative - Blog

CVE-2024-20697: Windows Libarchive Remote Code Execution Vulnerability 1 week ago | www.zerodayinitiative.com
amp blog post bug code +25
The April 2024 Security Updates Review 2 weeks ago | www.zerodayinitiative.com
adobe april blog post can +12
Pwn2Own Vancouver 2024 - Day Two Results 1 month ago | www.zerodayinitiative.com
blog post chrome edge event +10
Pwn2Own Vancouver 2024 - Day One Results 1 month ago | www.zerodayinitiative.com
blog blog post browser day one +11
Pwn2Own Vancouver 2024 - The Full Schedule 1 month ago | www.zerodayinitiative.com
blog post
The March 2024 Security Update Review 1 month, 1 week ago | www.zerodayinitiative.com
adobe blog post can check +14
CVE-2023-36049: Microsoft .NET CRLF Injection Arbitrary File Write/Deletion Vulnerability 1 month, 2 weeks ago | www.zerodayinitiative.com
arbitrary file write blog post bug crlf injection +26
The February 2024 Security Update Review 2 months, 1 week ago | www.zerodayinitiative.com
adobe blog post february latest +11
CVE-2023-46263: Ivanti Avalanche Arbitrary File Upload Vulnerability 2 months, 2 weeks ago | www.zerodayinitiative.com
avalanche blog post code code execution +32

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Team Lead, Security Operations Center, Cyber Risk

@ Kroll | United Kingdom
View on infosec-jobs.com

Cyber Security Risk Analyst

@ College Board | Remote - Virginia
View on infosec-jobs.com

Lead - IT Security Engineer

@ Bosch Group | BENGALURU, India
View on infosec-jobs.com

Project Cybersecurity Manager

@ Alstom | Bengaluru, KA, IN
View on infosec-jobs.com

Security Consultant

@ CloudSEK | Bengaluru, Karnataka, India
View on infosec-jobs.com
View more jobs