Security News > 2019 > January > Privilege escalation vulnerability uncovered in Microsoft Exchange

Privilege escalation vulnerability uncovered in Microsoft Exchange

2019-01-30 12:25

A researcher has discovered an alarming way that an attacker controlling a Microsoft Exchange mailbox account could potentially elevate their privileges to become a Domain Administrator.

News URL

https://nakedsecurity.sophos.com/2019/01/30/privilege-escalation-vulnerability-uncovered-in-microsoft-exchange/

#exchange #microsoft #vulnerability

Related news

Microsoft Uncovers macOS Vulnerability CVE-2024-44243 Allowing Rootkit Installation (source)
Microsoft: Exchange 2016 and 2019 reach end of support in October (source)
Microsoft: Outdated Exchange servers fail to auto-mitigate security bugs (source)
Microsoft Patches Critical Azure AI Face Service Vulnerability with CVSS 9.9 Score (source)
Microsoft Patches Actively Exploited Power Pages Privilege Escalation Vulnerability (source)
Microsoft's End of Support for Exchange 2016 and 2019: What IT Teams Must Do Now (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Microsoft		380	51	1407	2901	174	4533

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.