Microsoft’s Fix Fails to Patch ProxyNotShell RCE Flaws

After Microsoft published guidance on mitigating the two remote code execution flaws uncovered last week by Vietnamese security firm GTSC, it seems the mitigations Microsoft suggested weren’t as effective as the company had hoped. Over the weekend, Vietnamese security researcher Jang warned, “The URL pattern to detect/prevent the Exchange 0day provided in MSRC’s blog post […]

The post Microsoft’s Fix Fails to Patch ProxyNotShell RCE Flaws appeared first on eSecurityPlanet.

cloud security cybersecurity exchange fix flaws malware microsoft network security patch rce security threats vulnerabilities web security