UPDATE Microsoft add updates: The tech giant has revised the blocking rule in IIS Manager from “.*autodiscover\.json.*Powershell.*” to “(?=.*autodiscover\.json)(?=.*powershell).” Also , Change the Condition input from {URL} to {UrlDecode:{REQUEST_URI}} and then click OK On Thursday, September 29, a Vietnamese security firm called GTSC published information and IOCs on what they claim is a pair of unpatched Microsoft Exchange ServerContinue reading “New Microsoft Exchange zero-day actively (RCE+SSRF) exploited in attacks”
Tag Archives: exchange
Released: May 2022 Exchange Server Security Updates
Microsoft released an SU for exchange servers. Starting with this release of Security Updates, Microsoft are releasing updates in a self-extracting auto-elevating .exe package These SUs are available for the following specific builds of Exchange Server: Exchange Server 2013 CU23 Exchange Server 2016 CU22 and CU23 Exchange Server 2019 CU11 and CU12 Manual run of /PrepareAllDomains is required : Because of additionalContinue reading “Released: May 2022 Exchange Server Security Updates”
Exchange 2022 Cumulative Update
After almost an year Microsoft released new cu for exchange 2019 and exchange 2016. the update includes the latest SUs including the updates released in the March 2022 SUs. As published on The Exchange Team (https://techcommunity.microsoft.com/t5/exchange-team-blog/released-2022-h1-cumulative-updates-for-exchange-server/ba-p/3285026) the most update are : Servicing Model Changes Microsoft announcing changes to there update delivery model for Exchange Server. Microsoft areContinue reading “Exchange 2022 Cumulative Update”
Exchange Anti-Malware Email Stuck in Transport Queues
If you have exchange on prem or in hybrid mode. Email Stuck in Transport Queues. 1.1.2022 bug… Workaround Bypass the Anti-Malware Engine using the following commands in the Exchange Management Shell: Set-MalwareFilteringServer -Identity “ServerName” -BypassFiltering $true Restart-Service MSExchangeTransport If the environment has multiple servers, you can try this command to update them all at once: get-malwarefilteringserver |Continue reading “Exchange Anti-Malware Email Stuck in Transport Queues”
Microsoft November 2021 Patch Tuesday fixes 55 flaws, 6 zero-days
Microsoft has fixed 55 vulnerabilities with today’s update (November 2021), with six classified as Critical and 49 as Important. The number of each type of vulnerability is listed below: 20 Elevation of Privilege vulnerabilities 2 Security Feature Bypass vulnerabilities 15 Remote Code Execution vulnerabilities 10 Information Disclosure vulnerabilities 3 Denial of Service vulnerabilities 4 Spoofing vulnerabilities The sixContinue reading “Microsoft November 2021 Patch Tuesday fixes 55 flaws, 6 zero-days”
OWA Security
OWA Security introduction When users in an organization work with OWA (Microsoft Exchange Outlook Web App) from anywhere in the world, they are likely to leave behind copies of mailings that have saved or opened on computers from which they have accessed the service. In fact, when you open Attachment in OWA, a copy ofContinue reading “OWA Security”
Event ID 9646: Mapi session exceeded the maximum objects type
Hi On Exchange Servers you get the Event: Event ID 9646 : Mapi session /o=My Company/ou=First Administrative Group/cn=Recipients/cn=user” with Client Type WebServices exceeded the maximum of 250 objects of type “objtMessage”. How to solve : First, Do A Backup To Registry (on all server that you change). On the server, start up regedit. Navigate to theContinue reading “Event ID 9646: Mapi session exceeded the maximum objects type”