Microsoft on Friday disclosed it has made more improvements to the mitigation method offered as a means to prevent exploitation attempts against the newly disclosed unpatched security flaws in Exchange Server.
To that end, the tech giant has revised the blocking rule in IIS Manager from ".*autodiscover.json.*Powershell.*" to "(?=.*autodiscover.json)(?=.*powershell)."
The list of updated steps to add the URL Rewrite rule is below -
Alternatively, users can achieve the desired protections by executing a PowerShell-based Exchange On-premises Mitigation Tool (EOMTv2.ps1), wh ..
Support the originator by clicking the read the rest link below.