ProxyShell: Attackers Actively Scanning for Vulnerable...

Question

ProxyShell: Attackers Actively Scanning for Vulnerable Microsoft Exchange Servers (CVE-2021-34473)At Black Hat last week, DEVCORE researcher Orange Tsai presented three vulnerabilities in Microsoft Exchange Server that could be chained together to achieve unauthenticated remote code execution. All three vulnerabilities have been patched by Microsoft.&nbsp;On August 6, security researcher Kevin Beaumont reported attempts to exploit this vulnerability chain in the wild. By chaining these vulnerabilities, an attacker could execute arbitrary commands on vulnerable Exchange servers on port 443.For more information, please visit our blog.

security-operat · Answer

I hope this time, the nessus plugins are able to detect a vulnerable system even when there is a 301 redirect between.

Vulnerability Watch

Forum Discussion

ProxyShell: Attackers Actively Scanning for Vulnerable...

1 Reply

Recent Discussions

React2Shell: FAQ about React Server Components Vulnerability (CVE-2025-55182)

CVE-2025-64446: Fortinet FortiWeb Zero-Day Path Traversal Vulnerability Exploited in the Wild

Microsoft’s November 2025 Patch Tuesday Addresses 63 CVEs

Oracle October 2025 Critical Patch Update Addresses 170 CVEs

Frequently Asked Questions About The August 2025 F5 Security Incident

Americas

Europe

Asia / Australia