Security News > 2019 > January > Privilege escalation vulnerability uncovered in Microsoft Exchange

Privilege escalation vulnerability uncovered in Microsoft Exchange

2019-01-30 12:25

A researcher has discovered an alarming way that an attacker controlling a Microsoft Exchange mailbox account could potentially elevate their privileges to become a Domain Administrator.

News URL

https://nakedsecurity.sophos.com/2019/01/30/privilege-escalation-vulnerability-uncovered-in-microsoft-exchange/

#exchange #microsoft #vulnerability

Related news

Microsoft Exchange Online outage affects Outlook web users (source)
Microsoft: Exchange Online bug mistakenly quarantines user emails (source)
Microsoft Patches 125 Flaws Including Actively Exploited Windows CLFS Vulnerability (source)
Microsoft investigates global Exchange Admin Center outage (source)
Microsoft: Windows CLFS Vulnerability Could Lead to ‘Widespread Deployment and Detonation of Ransomware’ (source)
Microsoft: Exchange 2016 and 2019 reach end of support in six months (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Microsoft		383	52	1433	2959	181	4625

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.