• About
  • Get Jnews
  • Contcat Us
Pazartesi, Haziran 27, 2022
  • Login
Önder Online
  • Ana Sayfa
  • Windows 10
  • System Admin
  • Network
  • Exchange
    • Outlook
No Result
View All Result
  • Ana Sayfa
  • Windows 10
  • System Admin
  • Network
  • Exchange
    • Outlook
No Result
View All Result
Önder Online
No Result
View All Result
Home Cyber Security

CVE-2021-34473 Exchanger Server Zaafiyet tespiti

ondermonder by ondermonder
Kasım 28, 2021
in Cyber Security, Exchange
0 0
0
0
SHARES
14
VIEWS
Share on FacebookShare on Twitter

git clone https://github.com/certat/exchange-scans.git

$ python3 scan.py –path ‘/autodiscover/autodiscover.json?@itpro.com.tr/owa/?&Email=autodiscover/autodiscover.administrator%3F@xxx.com.tr’ \
–scheme ‘https://’ \
–patched $(date -Id)-patched.txt \
–unknown $(date -Id)-unknown.txt \
CVE-2021-34473 exchange-ips-at.txt $(date -Id)-vulnerable.txt

READ ALSO

AD Pentest Tools

CVE-2020–0796 /Microsoft SMBv3 Compression Zafiyeti Microsoft tarafından 10.03.2020 tarihinde CVE-2020-0796 kodu ile SMBv3 protokolünün güvenlik açığı barındırdığı duyurulmuştur.

 

çıktı sonucu

cat 2021-11-28-patched.txt
“xxxxx”,”2021-11-28T18:07:52+00:00″,”15.1.1261″,”Exchange Server 2016 CU7“

 

Etkilenen Sistemler

Aşağıdaki sistemlerin etkilendiği belirtilmiştir;

  • Microsoft Exchange Server 2019 Cumulative Update 9
  • Microsoft Exchange Server 2016 Cumulative Update 23
  • Microsoft Exchange Server 2013 Cumulative Update 8
  • Microsoft Exchange Server 2016 Cumulative Update 19
  • Microsoft Exchange Server 2019 Cumulative Update 20

 

Çözüm Önerileri

Aşağıdaki tabloda belirtilen güncellemelerin yüklenmesi önerilmektedir.

Ürün Makale Güvenlik Yaması
Microsoft Exchange Server 2019 Cumulative Update 9 5001779 Security Update
Microsoft Exchange Server 2013 Cumulative Update 23 5001779 Security Update
Microsoft Exchange Server 2019 Cumulative Update 8 5001779 Security Update
Microsoft Exchange Server 2016 Cumulative Update 19 5001779 Security Update
Microsoft Exchange Server 2016 Cumulative Update 20 5001779 Security Update

ilgili adresede gerekli güncelleme uyarısı verilmiştir.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34473

 

exchange serverınızın ilgili vulnerability durumu için

map –script http-vuln-cve2021-26855.nse x.x.x. komutuyla bilgi alabilirsiniz. örnek çıktıda hassas olarak görünmekte

 

map –script http-vuln-cve2021-26855.nse x.x.x.x
Starting Nmap 7.91 ( https://nmap.org ) at 2021-11-28 13:27 EST
Nmap scan report for mail.x.x.xx. (x.x.x.x)
Host is up (0.016s latency).
Not shown: 995 filtered ports
PORT STATE SERVICE
80/tcp open http
443/tcp open https
| http-vuln-cve2021-26855:
| VULNERABLE:
| Exchange Server SSRF Vulnerability
| State: cevi
| IDs: CVE:CVE-2021-26855
| Exchange 2013 Versions < 15.00.1497.012, Exchange 2016 CU18 < 15.01.2106.013, Exchange 2016 CU19 < 15.01.2176.009, Exchange 2019 CU7 < 15.02.0721.013, Exchange 2019 CU8 < 15.02.0792.010 are vulnerable to a SSRF via the X-AnonResource-Backend and X-BEResource cookies.
|
| Disclosure date: 2021-03-02
| References:
| http://aka.ms/exchangevulns
|_ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26855
587/tcp open submission
4444/tcp open krb524
8443/tcp open https-alt

Nmap done: 1 IP address (1 host up) scanned in 5.42 seconds

 

 

Related Posts

Cyber Security

AD Pentest Tools

Aralık 5, 2021
Cyber Security

CVE-2020–0796 /Microsoft SMBv3 Compression Zafiyeti Microsoft tarafından 10.03.2020 tarihinde CVE-2020-0796 kodu ile SMBv3 protokolünün güvenlik açığı barındırdığı duyurulmuştur.

Kasım 28, 2021
Nmap Nedir ve Nasıl Kullanılır?
Cyber Security

Nmap Kullanım

Kasım 10, 2021
Fortigate Virtula IPs (port yönlendirme)
Cyber Security

Fortigate Virtula IPs (port yönlendirme)

Nisan 19, 2021
Exchange 2019 SMTP error “451 4.7.0 Temporary Server Error. Please Try Again Later. PRX”
Exchange

Exchange Server 2019 PowerSehll ile Virtual Directory oluştırma vekontrolü

Mart 22, 2021
Exchange 2019 SMTP error “451 4.7.0 Temporary Server Error. Please Try Again Later. PRX”
Exchange

Exchange 2019 da Dahili e-posta Sahtekârlığı Nasıl Önlenir

Mart 22, 2021
Next Post
Windows Arama

Windows Arama

EDITOR'S PICK

Canlı Derslerden Verim Almak

Canlı Derslerden Verim Almak

Aralık 23, 2020
Active Directoryde şifreyi kim sıfırladı?

Active Directoryde şifreyi kim sıfırladı?

Nisan 14, 2022
Windows 10 hatası, bu dosyanın simgesini görünce sabit diskinizi bozuyor

Windows 10 hatası, bu dosyanın simgesini görünce sabit diskinizi bozuyor

Nisan 6, 2021
Cisco 2960 Trunk

Cisco 2960 Trunk

Nisan 20, 2021
Load More

Dostlar




  • Buy JNews
  • Landing Page
  • Documentation
  • Support Forum

© 2020 Önder AKÖZ

No Result
View All Result
  • Ana Sayfa
  • Network
  • System Admin
  • Windows 10
  • Exchange
    • Outlook

© 2020 Önder AKÖZ

Welcome Back!

Login to your account below

Forgotten Password?

Create New Account!

Fill the forms below to register

*By registering into our website, you agree to the Terms & Conditions and Privacy Policy.
All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.