Dislikes Dislikes:  0
Results 1 to 3 of 3
  1. 07-04-2021 #1
    FrohnB
    FrohnB is offline
    Service Manager 1,000+ Posts


    FrohnB's Avatar
    Join Date
    Jul 2017
    Location
    Nebraska, USA ------ GO BIG RED
    Posts
    1,919
    Rep Power
    126

    Microsoft Warns of Critical Vulnerability Called ‘PrintNightmare’

    Microsoft is reportedly warning Windows users about an unpatched critical flaw in the Windows Print Spooler service, dubbed “PrintNightmare.” The critical bug allows attackers to execute code with system-level privileges in Windows computers.
    The Verge reports that Microsoft has begun warning Windows users of an unpatched critical flaw in the Windows Print Spooler service that has been dubbed “PrintNightmare.” The vulnerability was uncovered earlier this week after security researchers accidentally published a proof-of-concept (PoC) exploit.

    Microsoft has yet to rate the vulnerability but it allows attackers to execute code with system-level privileges which is a critical issue for Windows users. Researchers at Sangfor published the PoC in what appears to be a mistake or miscommunications between the researchers and Microsoft. The test code was quickly deleted but not before being forked (copied) on GitHub.


    Sangfor researcher had reportedly been planning to detail multiple 0-day vulnerabilities in the Windows Print Spooler service at the annual Black Hat security conference late this month. It appears that the researchers believed that Microsoft had patched this particular security issue after the company published patches for a separate Windows Print Spooler flaw.
    Days later, Microsoft is warning users of the potential issue. Microsoft admits “the code that contains the vulnerability is in all versions of Windows,” but it is not currently clear if its exploitable beyond server versions of Windows, meaning the majority of retail Windows users may be safe.
    Microsoft is currently working on a patch but until it’s available, the company recommends disabling the Windows Print Spooler service, or disable inbound remote printing through Group Policy. The Cybersecurity and Infrastructure Security Agency (CISA) has recommended that admins “disable the Windows Print Spooler service in Domain Controllers and systems that do not print.”
    Omertà
    Reply With Quote Reply With Quote
  2. 07-04-2021 #2
    rthonpm
    rthonpm is online now
    Service Manager 2,500+ Posts rthonpm's Avatar
    Join Date
    Aug 2007
    Location
    Pennsyltucky
    Posts
    2,792
    Rep Power
    108

    Re: Microsoft Warns of Critical Vulnerability Called ‘PrintNightmare’

    Here is the current flow chart of potential mitigations for the vulnerability.E5SaOLHXIAYEzrL.jpg
    Reply With Quote Reply With Quote
  3. 07-10-2021 #3
    rthonpm
    rthonpm is online now
    Service Manager 2,500+ Posts rthonpm's Avatar
    Join Date
    Aug 2007
    Location
    Pennsyltucky
    Posts
    2,792
    Rep Power
    108

    Re: Microsoft Warns of Critical Vulnerability Called ‘PrintNightmare’

    How to Fully Patch the PrintNightmare Vulnerability | Petri

    Latest and greatest, including this week's out of band patch.

    Sent from my BlackBerry using Tapatalk
    Reply With Quote Reply With Quote
« Slnx v3 ,scan to folder issue, | Driver WindowsServer2019, noob question »

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules

Get the Android App
click or scan for the Copytechnet Mobile App

-= -= -= -= -=


IDrive Remote Backup

Lunarpages Internet Solutions

Advertise on Copytechnet

Your Link Here