Microsoft Exchange Vulnerability affects all Exchange versions

&NewLine;<&excl;-- WP QUADS Content Ad Plugin v&period; 2&period;0&period;92 -->&NewLine;<div class&equals;"quads-location quads-ad2527 " id&equals;"quads-ad2527" style&equals;"float&colon;none&semi;margin&colon;0px 3px 3px 3px&semi;padding&colon;0px 0px 0px 0px&semi;" data-lazydelay&equals;"0">&NewLine;&NewLine;<&sol;div>&NewLine;<h2><&sol;h2>&NewLine;<h2><a href&equals;"https&colon;&sol;&sol;www&period;moh10ly&period;com&sol;wp-content&sol;uploads&sol;2020&sol;02&sol;image&period;png"><img width&equals;"1028" height&equals;"462" title&equals;"image" style&equals;"display&colon; inline&semi; background-image&colon; none&semi;" alt&equals;"image" src&equals;"https&colon;&sol;&sol;www&period;moh10ly&period;com&sol;wp-content&sol;uploads&sol;2020&sol;02&sol;image&lowbar;thumb&period;png" border&equals;"0"><&sol;a> &NewLine;&NewLine;<&excl;-- WP QUADS Content Ad Plugin v&period; 2&period;0&period;92 -->&NewLine;<div class&equals;"quads-location quads-ad2530 " id&equals;"quads-ad2530" style&equals;"float&colon;none&semi;margin&colon;0px 3px 3px 3px&semi;padding&colon;0px 0px 0px 0px&semi;" data-lazydelay&equals;"0">&NewLine;&NewLine;<&sol;div>&NewLine; &NewLine;<&sol;h2>&NewLine;<h2>CVE-2020-0688 &vert; Microsoft Exchange Validation Key Remote Code Execution Vulnerability<&sol;h2>&NewLine;<h2>Security Vulnerability<&sol;h2>&NewLine;<p>Date of Publishing&colon; February&sol;11&sol;2020<&sol;p>&NewLine;<&excl;-- WP QUADS Content Ad Plugin v&period; 2&period;0&period;92 -->&NewLine;<div class&equals;"quads-location quads-ad2525 " id&equals;"quads-ad2525" style&equals;"float&colon;none&semi;margin&colon;0px 3px 3px 3px&semi;padding&colon;0px 0px 0px 0px&semi;" data-lazydelay&equals;"0">&NewLine;&NewLine;<&sol;div>&NewLine;&NewLine;<&excl;-- WP QUADS Content Ad Plugin v&period; 2&period;0&period;92 -->&NewLine;<div class&equals;"quads-location quads-ad2529 " id&equals;"quads-ad2529" style&equals;"float&colon;none&semi;margin&colon;0px 3px 3px 3px&semi;padding&colon;0px 0px 0px 0px&semi;" data-lazydelay&equals;"0">&NewLine;&NewLine;<&sol;div>&NewLine;&NewLine;<&excl;-- WP QUADS Content Ad Plugin v&period; 2&period;0&period;92 -->&NewLine;<div class&equals;"quads-location quads-ad2531 " id&equals;"quads-ad2531" style&equals;"float&colon;none&semi;margin&colon;0px 3px 3px 3px&semi;padding&colon;0px 0px 0px 0px&semi;" data-lazydelay&equals;"0">&NewLine;&NewLine;<&sol;div>&NewLine;&NewLine;<p>Microsoft has announced a vulnerability has been found in all Exchange Server 2010 through 2019 versions&comma; The vulnerability allows an attack to send a specially crafted request to the affected server in order to exploit it&period;<&sol;p>&NewLine;<h2>When could this happen&quest;<&sol;h2>&NewLine;<p>A remote code execution vulnerability exists in Microsoft Exchange Server when the server fails to properly create unique keys at install time&period;<&sol;p>&NewLine;<p>Knowledge of a the validation key allows an authenticated user with a mailbox to pass arbitrary objects to be deserialized by the web application&comma; which runs as SYSTEM&period;<&sol;p>&NewLine;<p>The security update addresses the vulnerability by correcting how Microsoft Exchange creates the keys during install&period;<&sol;p>&NewLine;<h2>Affected Versions&colon;<&sol;h2>&NewLine;<ul>&NewLine;<li>&NewLine;<h6>Microsoft Exchange Server 2010 Service Pack 3 Update Rollup 30<&sol;h6>&NewLine;<&sol;li>&NewLine;<li>&NewLine;<h6>Microsoft Exchange Server 2013 Cumulative Update 23&nbsp&semi;&nbsp&semi;&nbsp&semi; <&sol;h6>&NewLine;<&sol;li>&NewLine;<li>&NewLine;<h6>Microsoft Exchange Server 2016 Cumulative Update 14&nbsp&semi;&nbsp&semi;&nbsp&semi; <&sol;h6>&NewLine;<&sol;li>&NewLine;<li>&NewLine;<h6>Microsoft Exchange Server 2016 Cumulative Update 15&nbsp&semi;&nbsp&semi;&nbsp&semi; <&sol;h6>&NewLine;<&sol;li>&NewLine;<li>&NewLine;<h6>Microsoft Exchange Server 2019 Cumulative Update 3&nbsp&semi;&nbsp&semi;&nbsp&semi; <&sol;h6>&NewLine;<&sol;li>&NewLine;<li>&NewLine;<h6>Microsoft Exchange Server 2019 Cumulative Update 4<&sol;h6>&NewLine;<&sol;li>&NewLine;<&sol;ul>&NewLine;<p><&sol;p>&NewLine;<p><a href&equals;"https&colon;&sol;&sol;www&period;moh10ly&period;com&sol;wp-content&sol;uploads&sol;2020&sol;02&sol;image-1&period;png"><img width&equals;"386" height&equals;"254" title&equals;"image" style&equals;"margin&colon; 0px&semi; display&colon; inline&semi; background-image&colon; none&semi;" alt&equals;"image" src&equals;"https&colon;&sol;&sol;www&period;moh10ly&period;com&sol;wp-content&sol;uploads&sol;2020&sol;02&sol;image&lowbar;thumb-1&period;png" border&equals;"0"><&sol;a><&sol;p>&NewLine;<&excl;-- WP QUADS Content Ad Plugin v&period; 2&period;0&period;92 -->&NewLine;<div class&equals;"quads-location quads-ad2522 " id&equals;"quads-ad2522" style&equals;"float&colon;none&semi;margin&colon;0px 3px 3px 3px&semi;padding&colon;0px 0px 0px 0px&semi;" data-lazydelay&equals;"0">&NewLine;&NewLine;<&sol;div>&NewLine;&NewLine;<h2>Solution&colon;<&sol;h2>&NewLine;<p>Until now Microsoft has not provided any solution or work around to cover this vulnerability&period; <&sol;p>&NewLine;<h4>Mitigations<&sol;h4>&NewLine;<p>Microsoft has not identified any <a href&equals;"https&colon;&sol;&sol;technet&period;microsoft&period;com&sol;library&sol;security&sol;dn848375&period;aspx&num;Mitigation">mitigating factors<&sol;a> for this vulnerability&period;<&sol;p>&NewLine;<h4>Workarounds<&sol;h4>&NewLine;<p>Microsoft has not identified any <a href&equals;"https&colon;&sol;&sol;technet&period;microsoft&period;com&sol;library&sol;security&sol;dn848375&period;aspx&num;Workaround">workarounds<&sol;a> for this vulnerability&period;<&sol;p>&NewLine;<h2>NOTE&colon;<&sol;h2>&NewLine;<p>Keep an eye on the below link for any change<&sol;p>&NewLine;<&excl;-- WP QUADS Content Ad Plugin v&period; 2&period;0&period;92 -->&NewLine;<div class&equals;"quads-location quads-ad2526 " id&equals;"quads-ad2526" style&equals;"float&colon;none&semi;margin&colon;0px 3px 3px 3px&semi;padding&colon;0px 0px 0px 0px&semi;" data-lazydelay&equals;"0">&NewLine;&NewLine;<&sol;div>&NewLine;&NewLine;<p><a href&equals;"https&colon;&sol;&sol;portal&period;msrc&period;microsoft&period;com&sol;en-US&sol;security-guidance&sol;advisory&sol;CVE-2020-0688">https&colon;&sol;&sol;portal&period;msrc&period;microsoft&period;com&sol;en-US&sol;security-guidance&sol;advisory&sol;CVE-2020-0688<&sol;a><&sol;p>&NewLine;&NewLine;<&excl;-- WP QUADS Content Ad Plugin v&period; 2&period;0&period;92 -->&NewLine;<div class&equals;"quads-location quads-ad2524 " id&equals;"quads-ad2524" style&equals;"float&colon;none&semi;margin&colon;0px 3px 3px 3px&semi;padding&colon;0px 0px 0px 0px&semi;" data-lazydelay&equals;"0">&NewLine;&NewLine;<&sol;div>&NewLine;&NewLine;