Skip to content
March 24, 2023
  • Yelp
  • Facebook
  • Twitter
  • Instagram
  • Email
Shopdarr

Shopdarr

Tech World

  • Home
  • About
  • Blog
  • Contact
Watch Online
  • Home
  • Bolg
  • Microsoft Home windows PrintNightmare vulnerability has been actively exploited
  • Bolg

Microsoft Home windows PrintNightmare vulnerability has been actively exploited

shopdarr-adm December 10, 2021 2 min read

Microsoft: Windows PrintNightmare vulnerability has been actively exploited

Microsoft has issued an urgent warning over a Windows vulnerability, referred to as “PrintNightmare,” that could allow hackers to remotely run code on your computer. The exploit uses flaw in the Windows Print Spooler service, and Microsoft says it’s already alert to active exploits benefiting from it in the open.

PrintNightmare – or CVE-2021-34527, as Microsoft has assigned it – continues to be being assessed, with the business describing it as “an evolving situation.” Security researchers at Sangfor had identified the vulnerability, and published a proof concept exploit, apparently on the assumption a different patch had addressed the problem.

We deleted the POC of PrintNightmare. To mitigate this vulnerability, please update Windows to the most recent version, or disable the Spooler service. For more RCE and LPE in Spooler, keep tuned in and wait our Blackhat talk. https://t.co/heHeiTCsbQ

— zhiniang peng (@edwardzpeng) June 29, 2021

Actually, Microsoft had actually patched another vulnerability, which also relied on a bug in printer services, with that similarity seemingly resulting in the researchers’ confusion. The security team subsequently pulled down their exploit code, but at that time the genie had been from the bottle.

“A remote code execution vulnerability exists once the Windows Print Spooler service improperly performs privileged file operations,” Microsoft explains. “An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.”

Unfortunately, there’s still no definitive patch to set up yet. Instead, Microsoft’s advice would be to ensure that your system is running the security updates it released on June 8, 2021, also to follow its workaround advice for the moment.

Those workarounds include disabling the Print Spooler service altogether, or disabling inbound remote printing through changes to the system’s Group Policy. Neither is, frankly, a perfect – or long-term – fix. By turning off the Print Spooler service altogether, you’ll unsurprisingly lose the capability to print both locally or remotely; changing the Group Policy to block inbound remote printing means local printing still works, however the system no more functions as a print server.

Still, those headaches will probably be worth it, given the potential scale of the vulnerability. With full system privileges, hackers might use their usage of run code or delete programs, do virtually whatever they need with data, and create new accounts that likewise have full user-rights on the machine. In the process, they might easily lock out legitimate users.

Tags: Print Spooler Print Spooler service Spooler service

Continue Reading

Previous: New Nest Cams Now Up for sale
Next: Organic material necessary to support life entirely on an asteroid’s surface

Related Stories

Porsche recalls Taycan EV globally after cars suddenly turn off
2 min read
  • Bolg

Porsche recalls Taycan EV globally after cars suddenly turn off

January 26, 2022
Razer Anzu takes business to another level in lifestyle wearables
2 min read
  • Bolg

Razer Anzu takes business to another level in lifestyle wearables

January 24, 2022
Pokemon GO Fest Town Activations Are you currently on the list SlashGear
2 min read
  • Bolg

Pokemon GO Fest Town Activations Are you currently on the list SlashGear

January 24, 2022

About This Site

This may be a good place to introduce yourself and your site or include some credits.

Find Us

Address
123 Main Street
New York, NY 10001

Hours
Monday–Friday: 9:00AM–5:00PM
Saturday & Sunday: 11:00AM–3:00PM

You may have missed

I laughed, and I laughed a lot” – Dwayne Johnson responded to Vin Diesel on the scandal on the set of “Forsages
1 min read
  • Games

I laughed, and I laughed a lot” – Dwayne Johnson responded to Vin Diesel on the scandal on the set of “Forsages

March 21, 2022
Eldorado opened a pre-order for PlayStation 5 with an optional Dualsense gamepad
1 min read
  • Gadgets

Eldorado opened a pre-order for PlayStation 5 with an optional Dualsense gamepad

March 18, 2022
Amazing” Ed Boone impressed with fan art of Mortal Kombat and Street Fighter characters
1 min read
  • Games

Amazing” Ed Boone impressed with fan art of Mortal Kombat and Street Fighter characters

March 18, 2022
Death s Door Review. A new indie masterpiece in the vein of Hades and Dead Cells or another flop
7 min read
  • Games

Death s Door Review. A new indie masterpiece in the vein of Hades and Dead Cells or another flop

March 16, 2022
  • Yelp
  • Facebook
  • Twitter
  • Instagram
  • Email
Copyright © All rights reserved. | DarkNews by AF themes.