Forum Discussion
Salamat_Shah
Nov 14, 2024MCT
CVE-2024-49040: Mitigating a Critical Microsoft Exchange Server Vulnerability
 CVE-2024-49040 is a spoofing vulnerability identified in Microsoft Exchange Server versions 2016 and 2019. This flaw allows attackers to forge legitimate sender addresses on incoming emails, potentia...
ExMSW4319
Nov 15, 2024Iron Contributor
Can this be used in a hybrid environment to relay attacks through EXO?
I am seeing squiffy sender domains (e.g. intra-domain<space>dept) from outbound.protection.outlook.com servers.
Salamat_Shah
Nov 15, 2024MCT
Yes, it can be in a hybrid environment, especially if some mailboxes are on-premises while others are in Exchange Online. Alternatively, mailboxes can be entirely on-premises but configured in either a full or classic hybrid model..