ProxyNotShell – the New Proxy Hell?

4 October 2022

Nicknamed ProxyNotShell, a new exploit used in the wild takes advantage of the recently published Microsoft Server-Side Request Forgery (SSRF) vulnerability CVE-2022-41040 and a second vulnerability, CVE-2022-41082 that allows Remote Code Execution (RCE) when PowerShell is available to unidentified attackers. Based on ProxyShell, this new zero-day abuse risk leverage a chained attack similar to the one used in the 2021 ProxyShell attack that exploited the combination of multiple vulnerabilities – CVE-2021-34523, CVE-2021-34473, and CVE-2021-31207 – to permit a remote actor to execute arbitrary code.

Read full article on The Hacker News

Date:

4 October 2022

Categorie(s):

NEWS

Tag(s):

IT, Microsoft, Microsoft Exchange Server, New, Proxy

Patch up – 4 critical bugs in ArubaOS lead to remote code execution2 May 2024
Menlo Security inks cybersecurity partnership with Google Cloud2 May 2024
4 IoT Trends U.K. Businesses Should Watch in 20242 May 2024
Dealing with the Double-Edged Swords of MFA and Zero Trust2 May 2024
Continuous threat exposure management (CTEM): What it is and how to achieve it2 May 2024