6 matches found
Update now! February's Patch Tuesday tackles three zero-days
The Patch Tuesday roundup from Microsoft for February 2023 includes three zero-days. Not exactly what we had in mind for Valentine's Day. Microsoft classifies a vulnerability as a zero-day if it is publicly disclosed or actively exploited with no official fix available. As far as we can tell, onl...
CVE-2023-21707 Microsoft Exchange Server Remote Code Execution Vulnerability
...
CVE-2023-21707
CVE-2023-21707 is a Microsoft Exchange Server remote code execution vulnerability, observed among a set of Exchange RCE flaws fixed in the February 14, 2023 update (KB5023038). The cited update confirms that three Exchange RCE flaws—CVE-2023-21529, CVE-2023-21706, CVE-2023-21707, and CVE-2023-217...
CVE-2023-21707 Microsoft Exchange Server Remote Code Execution Vulnerability
...
KLA20232 Multiple vulnerabilities in Microsoft Server Software
Remote code execution vulnerabilities were found in Microsoft Server Software. Malicious users can exploit these vulnerabilities to execute arbitrary code. Original advisories CVE-2023-21707 CVE-2023-21710 CVE-2023-21529 CVE-2023-21706 Exploitation Public exploits exist for this vulnerability...
Security Updates for Microsoft Exchange Server (February 2023)
The Microsoft Exchange Server installed on the remote host is missing a security update. It is, therefore, affected by multiple vulnerabilities as referenced in the Feb, 2023 security bulletin. - Microsoft Exchange Server Remote Code Execution Vulnerability CVE-2023-21529, CVE-2023-21706,...