ATLANTA (CNN) Microsoft is urging Windows users to immediately install an update after security researchers found a serious vulnerability in the operating system.
The security flaw, known as PrintNightmare, affects the Windows Print Spooler service. Researchers at cybersecurity company Sangfor accidentally published a how-to guide for exploiting it.
The researchers tweeted in late May that they had found vulnerabilities in Print Spooler, which allows multiple users to access a printer. They published a proof-of-concept online by mistake and subsequently deleted it but not before it was published elsewhere online, including developer site GitHub.
Microsoft warned that hackers that exploit the vulnerability could install programs, view and delete data or even create new user accounts with full user rights. That gives hackers enough command and control of your PC to do some serious damage.
Microsoft pushes emergency Windows update to fix PrintNightmare flaw
arnnet.com.au - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from arnnet.com.au Daily Mail and Mail on Sunday newspapers.
By Juha Saarinen on Jul 8, 2021 10:19AM
Remote code execution and privilege escalation still possible.
Testing done by security researchers appears to bear out suspicions that Microsoft s urgent out-of-band patch released yesterday does not fully address the critical and exploited PrintNightmare zero-day vulnerability.
United States Computer Emergency Response Team vulnerability analyst Will Dormann raised doubts that Microsoft s patch was sufficient to prevent remote code execution and local privilege escalation to the SYSTEM Windows user.
Further testing done by Mimikatz security tool developer Benjamin Delpy points to Microsoft s patch being bypassable if the Windows Point and Print technology is enabled.
Ho no… thanks to @bugch3ck idea about UNC path, KB5005010 “fix” about #printernightmare does not seems to block RCE (neither LPE) if Point&Print enabled …
PrintNightmare vulnerability explained: Exploits, patches, and workarounds
Public exploits are available for a remote code execution vulnerability in the Windows Print Spooler that could allow attackers to take full control of systems. The vulnerability affects all editions of Windows and organisations are urged to deploy the patches as soon as possible. Credit: Dreamstime
Microsoft has started releasing emergency security updates to fix a publicly disclosed remote code execution vulnerability in the Windows printing functionality that could allow attackers to take full control of vulnerable systems.
The vulnerability, dubbed PrintNightmare and tracked as CVE-2021-34527, is located in the Windows Print Spooler service and the public exploits available for it are being improved. Organisations are urged to deploy the patches as soon as possible or disable inbound remote printing until the patches can be applied.
Update your Windows PC immediately to keep it running safe, warns Microsoft News
(Representational Image: Pixabay)
Microsoft wants all Windows users to update their system right away, without any delay. The tech giant has pushed an urgent security update for Windows users that fixes the PrintNightmare security issue researchers reported last week. “We recommend that you install these updates immediately,” Microsoft noted. Also Read - No Xbox Series X India restocks as Sony continues to sell more PS5 consoles
The tech giant said that the security update rolled out on July 6 provides protection for “CVE-2021-1675 and the additional remote code execution exploit in the Windows Print Spooler service known as ‘PrintNightmare’ documented in CVE-2021-34527.” Also Read - 9 new games join Xbox Game Pass in July; 8 leave the platform
vimarsana © 2020. All Rights Reserved.