GizPie

Technology Made Simple

  • News
  • Microsoft
  • Windows
  • Apple
  • Mobile
  • How-To
  • Best
  • Fix

Another Windows print spooler vulnerability found

August 12, 2021 by Jack Leave a Comment

Microsoft does not come to rest: As soon as the “PrintNightmare” security gap appears to be closed, the next message comes around the corner: There is another security gap in the Windows print spooler, which enables the foreign takeover of systems.

Windows

The vulnerability is documented as CVE-2021-36958 and the description sounds familiar: There is a remote code vulnerability in the Windows print spooler service when privileged file operations are not performed properly. An attacker who successfully exploited the vulnerability could execute arbitrary code with SYSTEM privileges and change files, install programs or create new user accounts.

The only workaround to protect yourself from the risk posed by this vulnerability is to deactivate the service, which means that you can no longer print.

The description is also a bit confusing because while Microsoft speaks of remote vulnerability, on the one hand, the attack vector is classified as “local”. That would mean that an attacker would have to have physical access to a computer or get someone to take certain actions.

Discovered the hole Benjamin Delpy, who via Twitter has a proof of concept video released has, in which he demonstrates the use of the gap on a system with the latest security updates on August 10, 2021. In another tweet, he writes that this whole PrintNightmare story is a wonderfully representative example of Microsoft’s lack of attention when it comes to bug fixes, tests and quality assurance. Given that the security problems persist even after the third attempt, it’s hard to disagree.

Share This Article On

Filed Under: News, Windows

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Categories

  • Apple
  • Best
  • Fix
  • How-To
  • Microsoft
  • Mobile
  • News
  • Windows

Recent Posts

  • How to Connect PS5 and PS4 to Laptop with HDMI Cable?
  • Fix: ERR_CACHE_MISS Error in Google Chrome
  • Best Activity Trackers Without Screen: Our Top 5 Picks in 2022
  • Google Pixel Tablet: Release Date, Specs, Price in the US, UK, Canada
  • Fix: WiFi and Bluetooth Issues After Upgrading to iOS 16
  • iOS 16 Problems, Bugs, Issues: How to Fix Them?
  • iOS 16 Jailbreak Status: Can You Jailbreak Your iPhone?
  • iPad Pro 2022: Release Date, Specs, Price in the US, UK, Canada
  • Sony IMX989 Sensor: Xiaomi 12 Ultra’s 50MP Camera Sensor
  • iPhone 14 Pro Max Release Date, Specs, Price in the US, UK, Canada

Copyright © 2021-22 · Privacy Policy . Disclaimer . About Us . Copyright . Contact Us. Disclosure: Links on GizPie may earn us a commission.