Security News > 2023 > November > New Microsoft Exchange zero-days allow RCE, data theft attacks
2023-11-03 15:14
Microsoft Exchange is impacted by four zero-day vulnerabilities that attackers can exploit remotely to execute arbitrary code or disclose sensitive information on affected installations.
ZDI-23-1578 - A remote code execution flaw in the 'ChainedSerializationBinder' class, where user data isn't adequately validated, allowing attackers to deserialize untrusted data.
Attackers can exploit it to access sensitive information from Exchange servers.
Millions of Exim mail servers exposed to zero-day RCE attacks.
3,000 Apache ActiveMQ servers vulnerable to RCE attacks exposed online.
HelloKitty ransomware now exploiting Apache ActiveMQ flaw in attacks.
News URL
Related news
- Microsoft June 2024 Patch Tuesday fixes 51 flaws, 18 RCEs (source)
- Microsoft fixes RCE vulnerabilities in MSMQ, Outlook (CVE-2024-30080, CVE-2024-30103) (source)
- Microsoft launches cybersecurity program to tackle attacks, protect rural hospitals (source)
- Black Basta ransomware gang linked to Windows zero-day attacks (source)
- Microsoft bigwig says the Feds catching Chinese spies in Exchange Online is the cloud working as intended (source)
- Kraken Crypto Exchange Hit by $3 Million Theft Exploiting Zero-Day Flaw (source)
- New Attack Technique Exploits Microsoft Management Console Files (source)
- Prompt Injection Flaw in Vanna AI Exposes Databases to RCE Attacks (source)
- 'Skeleton Key' attack unlocks the worst of AI, says Microsoft (source)
- RCE bug in widely used Ghostscript library now exploited in attacks (source)