A researcher has discovered an alarming way that an attacker controlling a Microsoft Exchange mailbox account could potentially elevate their privileges to become a Domain Administrator.https://nakedsecurity.sophos.com/2019/01/30/privilege-escalation-vulnerability-uncovered-in-microsoft-exchange/ …
Replying to @NakedSecurity
"implementing Microsoft’s November mitigation for the privilege elevation flaw covered by CVE-2018-8581." does not protect against this vulnerability. You should probably update your guidance.
11:02 AM - 2 Feb 2019
0 replies
0 retweets
1 like
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.