CISA Shares Mitigations for Windows Print Nightmare Bug

Windows Print Nightmare Bug
Share It On:

7th July 2021, Kathmandu

Microsoft has published mitigation guidance to block attacks on systems vulnerable to exploits setting Audience the windows print spoiler.

Remote Coe execution bug impacts all the windows, the company is still Investigating the vulnerability which is exploitable on all or not.

The U.S. government has taken a step in Mitigation for critical remote code execution vulnerability in windows. CERT coordination center is a part of the software engineering institute, a federally funded research center.

The cert/cc has released a vulnote CVE-2021-1675 insistence system administration to disable the windows print spooler service in Domain controllers and systems. Microsoft has also confirmed that an update for CVE-2021-1675, important to realize that updates do not protect active directory domain controllers.

Microsoft put an advisory of its own on the print nightmare that assigns a new CVE and seems a new attack vector while attempting to clarify the confusion that has arisen.

Highlights:

  1. The vulnerability affects any Windows Computer running a print spooler
  2. The working assumption is a patch that will be made available once it is created and tested
  3. Valid credentials are needed to exploit this vulnerability

The organization has issued a notice for a bug called “windows print spooler remote code execution vulnerability” that has come true but with a different CVE number (CVE-2021-34527).

While studying the bug looks like a print nightmare; Microsoft has acknowledged it as an evolving situation.

Remote code execution vulnerability contains when the windows print spooler service improperly does privileged file operations. An attacker who has done successfully exploit the vulnerability can run arbitrary code with system privileges.

This vulnerability is the same but distinct from the vulnerability that is assigned CVE-2021-1675, which looks after a different vulnerability.

The attack vector is different as well. CVE-2021-1675 was addressed by June 2021 security update. Attackers could be an indicator that they have known about this bug for some time, and fully addressing it is not trivial.

When the printer spooler is disabled on any servers that do not need printing functionality. This is the true step for active directory servers.

Developers have developed a script that will test and see if the vulnerability has been run against a particular system. Make sure that your servers and computers are up to date with the latest security patches.


Share It On:

Recent Posts

Kumari Bank Partners Dusit Thani Himalayan Resort For Exclusive Customer Discounts

Kumari Bank Partners Dusit Thani Himalayan Resort For Exclusive Customer

Share It On:10 September 2024, Kathmandu Kumari Bank Limited has partnered with Dusit Thani Himalayan Resort to offer its customers

Prabhu Bank Customers Get Special Discounts at Blue Cross Hospital

Prabhu Bank Customers Get Special Discounts at Blue Cross Hospital

Share It On:10 September 2024, Kathmandu Prabhu Bank Limited has partnered with Blue Cross Hospital to provide exclusive discounts to

TikTok Banned – Impact on Digital Rights and Freedom of Expression

TikTok Banned – Impact on Digital Rights and Freedom of

Share It On:10 September 2024, Kathmandu The Digital Dialogue South Asia Series is hosting a crucial webinar, “TikTok Banned –

Gurans Laghubitta Announces Dividend: A Milestone in Microfinance

Gurans Laghubitta Announces Dividend: A Milestone in Microfinance

Share It On:10 September 2024, Kathmandu Gurans Laghubitta Bittiya Sanstha (GLBSL), a leading microfinance institution in Nepal, has made significant

Nabil Dhukka Bachat Khata: Your Comprehensive Financial Partner

Nabil Dhukka Bachat Khata: Your Comprehensive Financial Partner

Share It On:10 September 2024, Kathmandu Nabil Dhukka Bachat Khata is more than just a savings account; it’s a holistic

Boosting Nepal-US Trade: Business Leaders Urge Continuation of Duty-Free Access

Boosting Nepal-US Trade: Business Leaders Urge Continuation of Duty-Free Access

Share It On:10 September 2024, Kathmandu Nepalese business leaders have emphasized the critical importance of maintaining duty-free access to the