+44 (0)203 88 020 88

Menu

Search

Author name: Ian Reynolds

Exchange Server RCE exploited in the wild

Microsoft has released a patch to a remote code execution vulnerability in Exchange server which is being actively targeted. CVE-2020-0688 is a flaw in the installation procedure resulting in all Exchange Servers using the same cryptographic keys for ASP.NET ViewState data.  A detailed write-up by the Zero Day Initiative demonstrates the flaw in action. In summary:

Exchange Server RCE exploited in the wild Read More »

0

No products in the basket.

No products in the basket.