Microsoft addresses Exchange bug that blocked emails starting on New Year’s Day
Microsoft Corp. has released an emergency fix for a bug that prevented on-premises Exchange servers from sending emails.
According to a blog post from the Exchange team, the bug struck on Jan. 1 and related to a date-check feature with the change to the year. The team emphasized that it was not a failure of the antivirus engine in Exchange, malware scanning or the malware engine.
It was not a specific security-related issue but an issue with the year becoming 2022. The affected versions, Exchange Server 2016 and Exchange Server 2019, couldn’t handle the new date when checking email against a signature file, causing the malware engine to crash, resulting in messages being stuck in transport queues.
Specifically, the error was caused when Microsoft Exchange checked the version of the FIP-FS antivirus scanning and attempted to store the date as a signed int32 variable. As noted today by Bleeping Computer, the variable can only store a maximum value of 2,201,010,001, which is less than the new date value of 2,202,010,001 for midnight on Jan. 1, 2022.
Converting a formatted date into an i32 is a galaxy brain move I never would've thought of. I'm sure that the source code has a comment somewhere saying "fixme: should be changed at some point"
— 。゚・m(>Д<#)/m/・゚。🏳️🌈 (@dada78641) January 1, 2022
Microsoft has created a solution to address the problem. However, customer action is required to implement the solution.
Using an automated solution, affected customers should download an automated script. Before running the script, they need to change the execution policy for PowerShell scripts by running “Set-ExecutionPolicy -ExecutionPolicy RemoteSigned.” The script should be run on each Exchange mailbox server that downloads anti-malware updates within an organization using elevated Exchange Management Shell. A restart of the Exchange Server is then required for the fix to take effect.
Microsoft also offers a longer manual solution to address the problem. Presumably, a simpler-to-use fix will be rolled out shortly as an update to Exchange 2016 and 2019.
There have been no reports of other software experiencing issues at the beginning of the new year in date handling, but it wouldn’t be surprising if Exchange isn’t alone in experiencing some issues.
Image: Marco Verch/Flickr
A message from John Furrier, co-founder of SiliconANGLE:
Your vote of support is important to us and it helps us keep the content FREE.
One click below supports our mission to provide free, deep, and relevant content.
Join our community on YouTube
Join the community that includes more than 15,000 #CubeAlumni experts, including Amazon.com CEO Andy Jassy, Dell Technologies founder and CEO Michael Dell, Intel CEO Pat Gelsinger, and many more luminaries and experts.
THANK YOU