Microsoft Re-Releasing Exchange Server Nov 2024 Security Update Fixing Transport Rules

Microsoft has re-released the November 2024 Security Update (SU) with enhancements to rectify problems encountered with transport rules.

Originally rolled out on November 12, 2024, as part of its ongoing security update efforts, the initial SU (referred to as Nov 2024 SUv1 with article KB5044062) led to unexpected interruptions in transport rules, impacting certain environments after some time.

The re-released update, labeled as Nov 2024 SUv2, was made available on November 27, 2024, under article KB5049233.

This update not only resolves the transport rules issue but also introduces improved control over the X-MS-Exchange-P2FromRegexMatch header, enhancing the robustness and reliability of the Exchange Server.

Analyze cyber threats with ANYRUN's powerful sandbox. Black Friday Deals : Get up to 3 Free Licenses.

Steps for Application

Depending on how the initial update was applied and the specific needs of an organization, Microsoft has outlined a clear course of action:

1. Manual Installation without Transport or DLP Rules: If the original SUv1 was installed manually and your environment does not utilize transport or DLP rules, it is advisable to update to SUv2 to benefit from the enhanced control provided.
2. Automatic Installation without Transport or DLP Rules: Environments that received the initial SUv1 through Microsoft/Windows Update will automatically receive the updated SUv2 in December 2024.
3. Uninstalled SUv1 to Address Transport Rules Issue: For those who uninstalled the original SU to address the transport rule issue, immediate installation of SUv2 is recommended to ensure functionality and security.
4. No Installation of SUv1: If the original SU was never installed, applying SUv2 is necessary to safeguard your system and benefit from the latest updates.

The downloadable links for the re-released update are accessible through the November 2024 SU announcement blog post.

Microsoft also encourages users to consult the initial release blog post for additional necessary actions and recommends running the Exchange Health Checker to determine any further steps needed for maintaining system health.

Through these timely interventions, Microsoft continues to demonstrate its commitment to providing secure and reliable solutions, ensuring that organizations can maintain seamless and secure communications infrastructure.

Leveraging 2024 MITRE ATT&CK Results for SME & MSP Cybersecurity Leaders – Attend Free Webinar