Microsoft has release security updates for Windows users to patch a security flaw impacting the Windows Print Spooler service. The vulnerability called “PrintNightmare,” that was discover which allows attackers to remotely execute malicious code with system privileges and install programs, make changes in the existing programs, and create new accounts with full user rights.
Microsoft has release the emergency patch for all major Windows versions starting from Windows 7 to Windows 10.
Windows Server users have also been provided with specific security updates to fix the critical flaw.
List of Windows versions that have received the security updates to patch the PrintNightmare vulnerability
- Windows Server 2004,
- Windows Server 2008,
- Windows Server 2012,
- Windows Server 2012 R2,
- Windows Server 2016,
- Windows Server 2019,
- Windows 7,
- Windows RT 8.1,
- Windows 8.1,
- Windows 10.
Microsoft said that the updates contain protections for the issue that has been record as CVE-2021-34527.
The security updates list is currently limit to a few versions initially.
Microsoft said that it would update the remaining Windows versions soon.
Users on a Windows machine that is yet to receive the security fix are recommend to manually disable the Print Spooler service or disable inbound remote printing.
How to Disable the Print Spooler Service or Disable Inbound Remote Printing?
The Print Spooler can be disable by passing the “Stop-Service -Name Spooler -Force” and “Set-Service -Name Spooler -StartupType Disabled” commands through PowerShell.
or
Follow These Steps :
- Go to Computer Configuration
- Then Administrative Templates
- Lastly Printers
- Switch off the Allow Print Spooler to accept client connections option.
- You need to restart the Print Spooler service for the change to take effect.
What is PrintNightmare?
The PrintNightmare flaw was report by researchers at Chinese cybersecurity firm Sangfor Technologies last week.
PrintNightmare is known as a remote code execution vulnerability that could be exploit to run arbitrary malicious code with system privileges.
As per the microsoft flaw exists when the Windows Print Spooler service improperly performs privileged file operations.
THANK YOU FOR READING.
