|Check Point Reference:||CPAI-2021-0944|
|Date Published:||4 Jan 2022|
|Last Updated:||Tuesday 04 January, 2022|
|Protection Provided by:||
|Who is Vulnerable?|| Microsoft Exchange Server 2013 Cumulative Update 23|
Microsoft Exchange Server 2016 Cumulative Update 21
Microsoft Exchange Server 2016 Cumulative Update 22
Microsoft Exchange Server 2019 Cumulative Update 10
Microsoft Exchange Server 2019 Cumulative Update 11
|Vulnerability Description||A cross site scripting vulnerability exists in Microsoft Exchange Server. Successful exploitation of this vulnerability would allow remote attackers to inject an arbitrary web script into the affected system.|
This protection detects attempts to exploit this vulnerability.
In order for the protection to be activated, update your Security Gateway product to the latest IPS update. For information on how to update IPS, go to SBP-2006-05, click on Protection tab and select the version of your choice.
This protection's log will contain the following information:
Attack Name: Windows SMB Protection Violation.
Attack Information: Microsoft Exchange Server Cross Site Scripting (CVE-2021-41349)