Microsoft has launched safety updates for Home windows customers to patch a safety flaw impacting the Home windows Print Spooler service. The vulnerability known as “PrintNightmare,” that was found final week, permits attackers to remotely execute malicious code with system privileges and set up packages, make adjustments within the present packages, and create new accounts with full person rights. Microsoft has introduced the emergency patch for all main Home windows variations — ranging from Home windows 7 to Home windows 10. Home windows Server customers have additionally been supplied with particular safety updates to repair the crucial flaw.
The checklist of Home windows variations which have received the safety updates to patch the PrintNightmare vulnerability contains Home windows Server 2004, Home windows Server 2008, Home windows Server 2012, Home windows Server 2012 R2, Home windows Server 2016, Home windows Server 2019, Windows 7, Windows RT 8.1, Windows 8.1, and Windows 10. Microsoft mentioned that the updates include protections for the difficulty that has been recorded as CVE-2021-34527.
For the reason that Home windows Print Spooler service exists on all Home windows variations, the vulnerability has impacted all Windows machines. Nonetheless, the safety updates checklist is presently restricted to a couple variations initially. Microsoft mentioned that it will replace the remaining Home windows variations quickly.
In the meantime, customers on a Home windows machine that’s but to obtain the safety repair are really helpful to manually disable the Print Spooler service or disable inbound distant printing. The Print Spooler may be disabled by passing the “Cease-Service -Identify Spooler -Pressure” and “Set-Service -Identify Spooler -StartupType Disabled” instructions by means of PowerShell.
Inbound distant printing, then again, may be disabled by going to Pc Configuration > Administrative Templates > Printers and switching off the Permit Print Spooler to just accept shopper connections choice. It’s essential to restart the Print Spooler service for the change to take impact.
The PrintNightmare flaw was reported by researchers at Chinese language cybersecurity agency Sangfor Applied sciences final week. It is named a distant code execution vulnerability that may very well be exploited to run arbitrary malicious code with system privileges. The flaw exists when the Home windows Print Spooler service improperly performs privileged file operations, Microsoft defined.
Discover more from News Journals
Subscribe to get the latest posts sent to your email.
