Zero Day Initiative - Exploiting Exchange PowerShell After ProxyNotShell: Part 2 - ApprovedApplicationCollection
Briefly

from Zero Day Initiative1 week ago
The ApprovedApplicationCollection gadget remains unlisted and accessible through MultiValuedProperty, exposing it to potential exploitation in Microsoft Exchange.
Zero Day Initiativehttps://www.thezdi.com/blog/2024/9/11/exploiting-exchange-powershell-after-proxynotshell-part-2-approvedapplicationcollection
Despite identifying the path traversal in extrac32.exe that completes the RCE chain, Microsoft decided not to address the vulnerability citing a lack of customer exposure.
Zero Day Initiativehttps://www.thezdi.com/blog/2024/9/11/exploiting-exchange-powershell-after-proxynotshell-part-2-approvedapplicationcollection
Read at Zero Day Initiative
#microsoft-exchange #rce #vulnerabilities #security-exploits #path-traversal
[
]
[
|
]