Skip to main content

NSA issues warning over Microsoft Exchange flaw

(Image credit: Image Credit: Sergey Nivens / Shutterstock)

The US National Security Agency (NSA) has taken to Twitter to warn followers of a vulnerability in Microsoft Exchange Servers.

"A remote code execution vulnerability (CVE-2020-0688) exists in Microsoft Exchange Servers. If unpatched, an attacker with email credentials can execute commands on your server," the tweet read.

The vulnerability, found in the Exchange Control Panel (ECP) component, is caused by the Exchange’s inability to create a unique cryptographic key upon installation.

According to Bleeping Computer, the Redmond software giant released a patch for the flaw last month. But multiple organisations, including cybersecurity firm Volexity and the US Department of Defence, have confirmed the exploit is being abused in the wild.

Simon Zuckerbraun, security researcher at Zero Day Initiative, believes that an attacker could exploit the vulnerability to "take over the Exchange server."

"Having accomplished this, an attacker would be positioned to divulge or falsify corporate email communications at will. Accordingly, if you’re an Exchange Server administrator, you should treat this as a Critical-rated patch and deploy it as soon as your testing is complete," he advised.

Sead Fadilpašić

Sead is a freelance journalist with more than 15 years of experience in writing various types of content, from blogs, whitepapers, and reviews to ebooks, and many more, across sites including Al Jazeera Balkans, TechRadar Pro, IT Pro Portal, and CryptoNews.