<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8">
</head>
<body>
<p>Sehr geehrte Damen und Herren,</p>
<p>es gibt eine extrem kritische Sicherheitslücke in Microsoft
Exchange (aktiv ausgenutzte Sicherheitslücke mit
unauthentifizierter Remote Code Exection). Im Anhang die
Information von Microsoft. Die LRZ-Installation wird gerade
aktualisiert. Bitte leiten Sie diese Information an alle Betreiber
lokaler Exchange-Installationen an Ihren Einrichtungen weiter.</p>
<p>---</p>
<p class="MsoNormal"><span lang="EN-US">Today, Microsoft released
patches for multiple different on-premises Microsoft Exchange
Server zero-day vulnerabilities that are being exploited by a
nation-state affiliated group. The vulnerabilities exist in
on-premises Exchange Servers 2010, 2013, 2016, and 2019. </span></p>
<p class="MsoNormal"><span lang="EN-US"> </span><span lang="EN-US"></span></p>
<p class="MsoNormal"><span lang="EN-US">Your Microsoft Customer
Success Account Manager and Technical Support Teams will be
engaging with your technical teams to assist in addressing this
issue. We wanted to ensure you were aware of the situation and
would ask that you help drive immediate remediation steps.</span><span
lang="EN-US"></span></p>
<p class="MsoNormal"><span lang="EN-US"></span><span lang="EN-US"></span></p>
<p class="MsoNormal"><span lang="EN-US">For on-premises Exchange
Servers, we ask that you direct your teams to
<i>start immediate action</i> to assess your Exchange
infrastructure and patch vulnerable servers, with the first
priority being servers which are accessible from the Internet
</span><span class="normaltextrun"><span style="color:black"
lang="EN-US">(<i>e.g</i>., servers publishing Outlook on the
web/OWA and ECP)</span></span><span lang="EN-US">. To patch
these vulnerabilities, you should move to the latest Exchange
Cumulative Updates and then install the relevant security
updates on each Exchange Server. </span>
<span class="normaltextrun"><span style="color:black" lang="EN-US">You can use
the Exchange Server Health Checker script, which can
be downloaded from </span></span><a
href="https://aka.ms/ExchangeHealthChecker"><span
class="normaltextrun"><span style="color:#0563C1" lang="EN-US">GitHub</span></span></a><span
class="normaltextrun"><span style="color:black" lang="EN-US"> (use
the latest release). Running this script will tell you if you
are behind on your on-premises Exchange Server updates (note
that the script does not support Exchange Server 2010).</span></span><span
class="eop"><span style="color:black" lang="EN-US"> </span></span><span
lang="EN-US"></span></p>
<p class="MsoNormal"><span lang="EN-US"></span><span lang="EN-US"></span></p>
<p class="MsoNormal"><span lang="EN-US">We also recommend that your
security team assess whether or not the vulnerabilities were
being exploited by using the Indicators of Compromise we shared
here -
</span><span lang="EN-US"></span></p>
<table class="MsoTableGrid"
style="border-collapse:collapse;border:none" cellspacing="0"
cellpadding="0" border="1">
<tbody>
<tr style="height:28.5pt">
<td style="width:468.0pt;border:none;padding:0cm 5.4pt 0cm
5.4pt;height:28.5pt" width="624" valign="bottom">
<p class="MsoNormal"><span lang="EN-US"><a
href="https://www.microsoft.com/security/blog/2021/03/02/hafnium-targeting-exchange-servers/">https://www.microsoft.com/security/blog/2021/03/02/hafnium-targeting-exchange-servers/</a></span></p>
</td>
</tr>
</tbody>
</table>
<p class="MsoNormal"><span style="color:black" lang="EN-US"></span><span
lang="EN-US"></span></p>
<p class="MsoNormal"><span lang="EN-US"> </span><span lang="EN-US"></span></p>
<p class="MsoNormal"><span lang="EN-US">We are committed to working
with you through this issue. Your Microsoft account and support
teams have been fully mobilized. Please let me know if you need
additional help.</span><span lang="EN-US"></span></p>
<p class="MsoNormal"><span lang="EN-US"></span><span lang="EN-US"></span></p>
<p class="MsoNormal"><b><u><span lang="EN-US">Information to assist
you and your teams:
</span></u></b><b><u><span lang="EN-US"></span></u></b></p>
<p class="MsoNormal"><b><span lang="EN-US"> </span></b><span
lang="EN-US"></span></p>
<table class="MsoNormalTable" style="border-collapse:collapse"
cellspacing="0" cellpadding="0" border="0">
<tbody>
<tr>
<td style="width:435.75pt;border:solid windowtext
1.0pt;padding:0cm 5.4pt 0cm 5.4pt" width="581" valign="top">
<p class="MsoNormal"><a
href="https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fmsrc.microsoft.com%2Fupdate-guide%2FreleaseNote%2F2021-Mar&data=04%7C01%7Cjotrull%40microsoft.com%7C446db1dfedf248efd2cd08d8dda7a0dd%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637503059312381885%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=9adPKHyvETmjOgeaMtFEbDR%2FFicOrvDb%2B7ubwGwHOZY%3D&reserved=0"><span
lang="EN-US">March 2, 2021 Security Update Release -
Release Notes - Security Update Guide - Microsoft</span></a><span
lang="EN-US"></span></p>
</td>
</tr>
<tr>
<td style="width:435.75pt;border:solid windowtext
1.0pt;border-top:none;padding:0cm 5.4pt 0cm 5.4pt"
width="581" valign="top">
<p class="MsoNormal"><a
href="https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fmsrc.microsoft.com%2Fupdate-guide%2Fen-US%2Fsecurity-guidance%2Fadvisory%2FCVE-2021-26412&data=04%7C01%7Cjotrull%40microsoft.com%7C446db1dfedf248efd2cd08d8dda7a0dd%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637503059312381885%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=HHyJP5liONu4zjlO85E4TmB4%2FH%2BqCkYjALwMasrgAOE%3D&reserved=0"><span
style="font-size:10.5pt;font-family:"Segoe
UI",sans-serif">CVE-2021-26412</span></a></p>
</td>
</tr>
<tr>
<td style="width:435.75pt;border:solid windowtext
1.0pt;border-top:none;padding:0cm 5.4pt 0cm 5.4pt"
width="581" valign="top">
<p class="MsoNormal"><a
href="https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fmsrc.microsoft.com%2Fupdate-guide%2Fen-US%2Fsecurity-guidance%2Fadvisory%2FCVE-2021-26854&data=04%7C01%7Cjotrull%40microsoft.com%7C446db1dfedf248efd2cd08d8dda7a0dd%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637503059312391884%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=i9HiB3eLC4YduLF0hTBRmxSekL5ltOYZzeE7F%2FgJQd0%3D&reserved=0"><span
style="font-size:10.5pt;font-family:"Segoe
UI",sans-serif">CVE-2021-26854</span></a></p>
</td>
</tr>
<tr>
<td style="width:435.75pt;border:solid windowtext
1.0pt;border-top:none;padding:0cm 5.4pt 0cm 5.4pt"
width="581" valign="top">
<p class="MsoNormal"><a
href="https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fmsrc.microsoft.com%2Fupdate-guide%2Fen-US%2Fsecurity-guidance%2Fadvisory%2FCVE-2021-26855&data=04%7C01%7Cjotrull%40microsoft.com%7C446db1dfedf248efd2cd08d8dda7a0dd%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637503059312401883%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=4%2Fi8DY%2FciqfLNfqKFmFqDNEBR63dFHbPaaDRVZtHPwQ%3D&reserved=0"><span
style="font-size:10.5pt;font-family:"Segoe
UI",sans-serif">CVE-2021-26855</span></a></p>
</td>
</tr>
<tr>
<td style="width:435.75pt;border:solid windowtext
1.0pt;border-top:none;padding:0cm 5.4pt 0cm 5.4pt"
width="581" valign="top">
<p class="MsoNormal"><a
href="https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fmsrc.microsoft.com%2Fupdate-guide%2Fen-US%2Fsecurity-guidance%2Fadvisory%2FCVE-2021-26857&data=04%7C01%7Cjotrull%40microsoft.com%7C446db1dfedf248efd2cd08d8dda7a0dd%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637503059312411875%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=Rd6yMpvPOv2WAIZwu9oPZLn7BqeaH6gpVwXpm%2BCn0HQ%3D&reserved=0"><span
style="font-size:10.5pt;font-family:"Segoe
UI",sans-serif">CVE-2021-26857</span></a></p>
</td>
</tr>
<tr>
<td style="width:435.75pt;border:solid windowtext
1.0pt;border-top:none;padding:0cm 5.4pt 0cm 5.4pt"
width="581" valign="top">
<p class="MsoNormal"><a
href="https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fmsrc.microsoft.com%2Fupdate-guide%2Fen-US%2Fsecurity-guidance%2Fadvisory%2FCVE-2021-26858&data=04%7C01%7Cjotrull%40microsoft.com%7C446db1dfedf248efd2cd08d8dda7a0dd%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637503059312411875%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=Yipfg9y0Jzul%2FMBi5jdv%2BRS5nWZ2nq6JQS%2FJGE2O0eo%3D&reserved=0"><span
style="font-size:10.5pt;font-family:"Segoe
UI",sans-serif">CVE-2021-26858</span></a></p>
</td>
</tr>
<tr>
<td style="width:435.75pt;border:solid windowtext
1.0pt;border-top:none;padding:0cm 5.4pt 0cm 5.4pt"
width="581" valign="top">
<p class="MsoNormal"><a
href="https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fmsrc.microsoft.com%2Fupdate-guide%2Fen-US%2Fsecurity-guidance%2Fadvisory%2FCVE-2021-27065&data=04%7C01%7Cjotrull%40microsoft.com%7C446db1dfedf248efd2cd08d8dda7a0dd%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637503059312421867%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=EkDJe5HHGRsvI9l5Tt8nnSL%2B1nLiGiNzGncnr8GsiIk%3D&reserved=0"><span
style="font-size:10.5pt;font-family:"Segoe
UI",sans-serif">CVE-2021-27065</span></a></p>
</td>
</tr>
<tr>
<td style="width:435.75pt;border:solid windowtext
1.0pt;border-top:none;padding:0cm 5.4pt 0cm 5.4pt"
width="581" valign="top">
<p class="MsoNormal"><a
href="https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fmsrc.microsoft.com%2Fupdate-guide%2Fen-US%2Fsecurity-guidance%2Fadvisory%2FCVE-2021-27078&data=04%7C01%7Cjotrull%40microsoft.com%7C446db1dfedf248efd2cd08d8dda7a0dd%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637503059312431867%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=BHFjax80mUrtnxVWf70kIQp9URoAyidopFVg5pxrV3w%3D&reserved=0"><span
style="font-size:10.5pt;font-family:"Segoe
UI",sans-serif">CVE-2021-27078</span></a></p>
</td>
</tr>
</tbody>
</table>
<p class="MsoNormal"><span style="color:black"></span><span
lang="EN-US"></span></p>
<p class="MsoNormal"><span lang="EN-US"> </span></p>
<p class="MsoNormal"><span lang="EN-US">Exchange Team Blog Post - </span><a
href="https://techcommunity.microsoft.com/t5/exchange-team-blog/released-march-2021-exchange-server-security-updates/ba-p/2175901"><span
lang="EN-US">Article Not Found - Microsoft Tech Community</span></a><span
lang="EN-US"></span></p>
<p class="MsoNormal"><span lang="EN-US">Microsoft Security Response
Center release -
</span><a
href="https://techcommunity.microsoft.com/t5/exchange-team-blog/released-march-2021-exchange-server-security-updates/ba-p/2175901"><span
lang="EN-US">Article Not Found - Microsoft Tech Community</span></a><span
lang="EN-US"></span></p>
<p class="MsoNormal"><span lang="EN-US">CSS Support: </span><a
href="https://support.microsoft.com/"><span lang="EN-US">https://support.microsoft.com/</span></a><span
lang="EN-US"><br>
</span></p>
<p class="MsoNormal">---<br>
<span lang="EN-US"></span></p>
<pre class="moz-signature" cols="72">
</pre>
</body>
</html>