Exchange Control Panel Viewstate Deserialization

Posted by deepcore on March 5, 2020 – 9:18 am

This Metasploit module exploits a .NET serialization vulnerability in the Exchange Control Panel (ECP) web page. The vulnerability is due to Microsoft Exchange Server not randomizing the keys on a per-installation basis resulting in them using the same validationKey and decryptionKey values. With knowledge of these, values an attacker can craft a special viewstate to cause an OS command to be executed by NT_AUTHORITYSYSTEM using .NET deserialization.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« [remote] EyesOfNetwork – AutoDiscovery Target Command Execution (Metasploit) XOO Digital 2.1.0 SQL Injection »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Exchange Control Panel Viewstate Deserialization

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL