Microsoft has released Security Updates (SUs) for vulnerabilities found in:
Exchange Server 2019
Exchange Server 2016
SUs are available for the following specific versions of Exchange Serve...
Updated Oct 12, 2023
Version 8.0
Blog Post
Hi,
Idid remove TokenCacheModule using CVE-2023-21709 when previous SU was released and now I have run the updated script with -RollBack. Apparently previous state was correctly restored:
[PS] C:\ftp>Get-WebGlobalModule -Name "TokenCacheModule"
Name Image
---- -----
TokenCacheModule %windir%\System32\inetsrv\cachtokn.dll
yet, when I run the latest healthChecker script I get this warning:
TokenCacheModule loaded: False
The module wasn't found and as a result, CVE-2023-21709 and CVE-2023-36434 are mitigated. Windows has released a Security Update that addresses the vulnerability.
It should be installed on all Exchange servers and then, the TokenCacheModule can be added back to IIS (by running .\CVE-2023-21709.ps1 -Rollback).
ore Information: https://aka.ms/CVE-2023-21709ScriptDoc
Are there additional steps to take to get it to load or is the warning actually incorrect and should be ignored?
EDIT:
In IIS console->modules-> I can see the module is available in all its sites except "Default Web Site" so I assume the warning is correct. How can I add it to the list so the warning goes away?
TIA & rgds