Please help! what vulnerability that I got and how to fix?

Tanisorn Sowudomsilp 251 Reputation points
2023-01-12T02:17:21.1+00:00

Dear All,

My customer Exchange Server is the Exchange 2019 CU12 May 22SU.

I found these alerts in the Crowdstrike detection regarding attacking via w3wp.exe.

Please see the pictures below. How can I fix this vulnerability or any suggestion?

1

2

3

Thank you very much,

Tanisorn.

Exchange | Exchange Server | Other
Exchange | Exchange Server | Development
Exchange | Exchange Server | Management
Windows for business | Windows Server | User experience | Other
Exchange | Other
{count} votes

Accepted answer
  1. Aholic Liang-MSFT 13,886 Reputation points Microsoft External Staff
    2023-01-13T02:17:09.2533333+00:00

    Hi @Tanisorn Sowudomsilp

    It is recommended that you use the Exchange Server Health Checker script to check for specific vulnerabilities in the exchange server to determine which updates are required.

     

    In addition , Microsoft has released the January 2023 Exchange Server security update.

    Although we are not aware of any active exploits in the wild, our recommendation is to immediately install these updates to protect your environment.


    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment". Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread


2 additional answers

Sort by: Most helpful
  1. Amit Singh 5,306 Reputation points
    2023-01-13T06:25:24.14+00:00
    0 comments No comments

  2. Tanisorn Sowudomsilp 251 Reputation points
    2023-02-14T04:43:17.5+00:00

    The problem was resolved by updated Exchange Server security update sir.

    Thank you very much,

    Tanisorn

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.