As you are aware, Microsoft released zero-day Security Updates last week for all versions of Exchange Servers.
Microsoft has stated it is a critical-level update. It appears that ‘unauthenticated’ executions could occur on Exchange Servers exposing data.
The following links summarize steps that your organization can take:
- Microsoft Security Advisory: https://msrc-blog.microsoft.com/2021/03/02/multiple-security-updates-released-for-exchange-server/
- Microsoft Vulnerability Detection Tool: https://github.com/microsoft/CSS-Exchange/tree/main/Security
- CISA Alert: https://us-cert.cisa.gov/ncas/alerts/aa21-062a
For Messageware customers, we have not encountered any issues with installing the Microsoft Security Updates. They can be installed without modifying Messageware software in place. We suggest that you proceed with applying the patches if you have not already. If you encounter any post-install issues, please email email@example.com to create a priority support ticket.
Messageware Support Team