Thursday, March 4, 2021

Microsoft CVE-2021-26857: Microsoft Exchange Server Remote Code Execution Vulnerability (HAFNIUM Exploited)

rapid7 vulnerabilities In: , 
Description

                                There exists an insecure deserialization vulnerability in the Unified Messaging service. Insecure deserialization is where untrusted user-controllable data is deserialized by a program. Exploiting this vulnerability gave HAFNIUM the ability to run code as SYSTEM on the Exchange server. This requires administrator permission or another vulnerability to exploit.
                            
Solution(s)
  • msft-kb5000871-2dbdda16-f1ba-4b6a-891c-f92d6c05647c
  • msft-kb5000871-30386cf9-1373-4798-90b7-056d667875b3
  • msft-kb5000871-3ef89683-3703-4a5d-b855-38579ba99a85
  • msft-kb5000871-c6ed44ca-634b-4b5c-91ba-12232d8ec98e
  • msft-kb5000871-dbbef9bc-f60b-4ee9-9d7d-22899fe76e70
  • msft-kb5000978-4ecf02e7-963b-42d5-8c3d-07c90ec7f059


    • References
  • https://attackerkb.com/topics/cve-2021-26857
  • CVE - 2021-26857
  • 5000871
  • 5000978
  • https://www.microsoft.com/security/blog/2021/03/02/hafnium-targeting-exchange-servers/




    •  

    Copyright © 2021 Vulnerability Database | Cyber Details™

    thank you Templateism for the design - You should have written the code a little more complicated - Nothing Encrypted anymore