Back to directory

WRITEUP #2050

A New Attack Surface on MS Exchange Part 4 - ProxyRelay!

RCEPrivilege escalation

by@orange_8361(Orange Tsai)

Program

Microsoft

Published

Oct 19, 2022

Added to HackDex

Oct 21, 2022

Read Full Writeuphttps://devco.re/blog/2022/10/19/a-new-attack-surface-on-MS-exchange-part-4-ProxyRelay/

▸ RELATED WRITEUPS

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Escalating From Reader To Contributor In Azure API Management

Privilege Escalation

Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS

RCEArbitrary file write

Built with ❤️ by Shubham Rawat