3rd critical flaw in Windows printing in 5 weeks causes new warning from Microsoft. Microsoft
Microsoft faced yet another problem while trying to lock down its Windows print printer, as the software maker warned customers Thursday to disable the service, a new vulnerability that helps attackers crack malicious code running on fully patched devices. p>
ReadingMicrosoft Emergency Correction cannot fix the critical "PrintNightmare" problem. This is the third printer-related bug in Windows that has surfaced in the past five weeks. Microsoft, which was released in June due to a remote code execution flaw, failed to fix a similar but distinct bug called PrintNightmare, which allows attackers to execute malicious code on fully patched devices. Microsoft has released an unscheduled patch for PrintNightmare, but it is not possible to prevent this issue from being exploited on devices using special settings.
Get Printer Driver h2>
Microsoft warned Thursday of a new security vulnerability in its Windows printer. The point optimization bug, followed by the name CVE-2021-34481, allows hackers who already have the ability to execute malicious code with limited system rights to upgrade those rights. Microsoft allows the code to access sensitive parts of Windows so that malware can run every time the device is restarted. "When the Windows Print Spooler service incorrectly handles privileged files, there is a level of privilege impairment," Microsoft wrote in Thursday's advisory. "An attacker who successfully exploited this vulnerability could execute arbitrary code with system privileges. The attacker could then install programs. View, modify, or delete data; or create new accounts with full user rights"
Microsoft said The attacker must first be able to execute code on the victim's system. Tip of exploiting nature is 'potential'. Microsoft also recommends that customers install previous security updates. A printer is software that manages jobs sent to the printer by temporarily storing data in a buffer and processing jobs sequentially or with job priority. Advertising
“The solution to this vulnerability is to stop and disable print spool services,” the advisor said Thursday. It provides a variety of methods that customers can use to do this.
This vulnerability was discovered by Jacob Baines, vulnerability researcher at security firm Dragos. Bynes is scheduled to speak at next month's Defcon Hackers Conference on "Bringing the Print Driver Vulnerability". Here is an executive summary:
What can you do when you see yourself as a Windows user who scores low and can't access the system? Install a weak print driver! In this lecture, you will learn how to introduce vulnerable print drivers into a fully patched system. Then, with three examples, you will learn how to use vulnerable drivers to boost the system.
In an email, Bynes said he reported the vulnerability to Microsoft in June and doesn't know why Microsoft is issuing the advice now.
" I was surprised by the advice, because it was so surprising it didn't relate to the date. The final I gave them (August 7) and it was not released with a patch.” I am not sure what prompted them to publish the advisory without correction. This usually goes against the purpose of the disclosure program. But for my part, I have not disclosed the details of the vulnerability publicly and will not announce it until August 7 They may have seen the details posted elsewhere, but I haven't."
Microsoft said it was working on a patch but did not provide a timeline for its release.
Bainance described the severity of the vulnerability as "moderate."
"He explained that this is a CVSSv3 score of 7.8 (or higher), but at the end of the day that's just an increase in the local score." "I think this vulnerability has some interesting features that make it worth talking about, but there are always new issues to drive localized hits in Windows." p>
Microsoft tells customers to disable Windows printer to prevent piracy
For at least a decade, privacy advocates have yearned ...
On Wednesday, Amazon sent out an email notification to customers who pu...
Despite facing global chip shortage, US export ban and sharp ...
Open source packages estimated to have been down...