Mitigation for Exchange Zero-Days Bypassed! Microsoft Issues New Workarounds

on October 5, 2022

The Hacker News

Microsoft has revised its mitigation measures for the newly disclosed and actively exploited zero-day flaws in Exchange Server after it was found that they could be trivially bypassed. The two vulnerabilities, tracked as CVE-2022-41040 and CVE-2022-41082, have been codenamed ProxyNotShell due to similarities to another set of flaws called ProxyShell, which the tech giant resolved last year.

More From Author

Hacking news

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

April 3, 2026

The Hacker News

Hacking news

Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers

April 3, 2026

The Hacker News

Hacking news

UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack

April 3, 2026

The Hacker News

Mitigation for Exchange Zero-Days Bypassed! Microsoft Issues New Workarounds

More From Author

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers

UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack

Russian Hacker Arrested in India for Reportedly Helping Students Cheat in JEE-Main Exam

Canadian Netwalker Ransomware Affiliate Sentenced to 20 Years in U.S. Prison