Multiple vulnerabilities in Microsoft Exchange Server

Описание

Multiple vulnerabilities were found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to perform cross-site scripting attack, execute arbitrary code, spoof user interface.

Below is a complete list of vulnerabilities:

1. A spoofing vulnerability in Microsoft Exchange Server can be exploited remotely to spoof user interface.
2. A remote code execution vulnerability in Microsoft Exchange Server can be exploited remotely to execute arbitrary code.

Первичный источник обнаружения

• CVE-2021-41349
  CVE-2021-42321
  CVE-2021-42305
  

Эксплуатация

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

• Microsoft-Exchange-Server

Список CVE

• CVE-2021-41349
  warning
• CVE-2021-42321
  high
• CVE-2021-42305
  warning

Список KB

• 5007409

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com