Proof-Of-Concept Exploit Code For ProxyNotShell Vulnerability Released Online

ProxyNotShell is a combination of two high-severity vulnerabilities in Microsoft Exchange, which allow threat actors to run PowerShell in the context of the system and remotely execute arbitrary code on compromised servers. Microsoft has fixed ProxyNotShell in their November 2022 Patch Tuesday, and a week later security researcher Janggggg released the proof-of-concept (PoC) hackers used to backdoor Exchange servers. Attackers stole data from the compromised servers using Chinese Chopper deployed there by chaining the two vulnerabilities in question. Read more...