CVE-2021-42321 PoC — Microsoft Exchange Server 安全漏洞

Source

https://github.com/7BitsTeam/exch_CVE-2021-42321

Associated Vulnerability

Title:Microsoft Exchange Server 安全漏洞 (CVE-2021-42321)
Description:Microsoft Exchange Server是美国微软（Microsoft）公司的一套电子邮件服务程序。它提供邮件存取、储存、转发，语音邮件，邮件过滤筛选等功能。 Microsoft Exchange Server存在安全漏洞。以下产品和版本受到影响：Microsoft Exchange Server 2019 Cumulative Update 10,Microsoft Exchange Server 2016 Cumulative Update 22,Microsoft Exchange Ser

Readme

# exch_CVE-2021-42321

## 本文是7bits安全团队文章《DotNet安全-CVE-2021-42321复现》涉及到的工具

TypeConfuse链改为写入文件，bypass windows definder禁用w3wp.exe启动进程。

将此文件覆盖ysoserial.net原始文件，重新编译即可。

### 欢迎关注我们的公众号 - Zbits2022

![](/images/qrcode.jpg)

File Snapshot


 [4.0K]  /data/pocs/bd1282a04fa26c174abe33f7a300342e868aae02
├── [4.0K]  images
│   └── [ 27K]  qrcode.jpg
├── [ 349]  README.md
└── [ 14K]  TypeConfuseDelegateGenerator.cs

1 directory, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!