https://safirsoft.com Microsoft tells customers to disable Windows printer to prevent piracy

3rd critical flaw in Windows printing in 5 weeks causes new warning from Microsoft. Microsoft

Microsoft faced yet another problem while trying to lock down its Windows print printer, as the software maker warned customers Thursday to disable the service, a new vulnerability that helps attackers crack malicious code running on fully patched devices.

ReadingMicrosoft Emergency Correction cannot fix the critical "PrintNightmare" problem. This is the third printer-related bug in Windows that has surfaced in the past five weeks. Microsoft, which was released in June due to a remote code execution flaw, failed to fix a similar but distinct bug called PrintNightmare, which allows attackers to execute malicious code on fully patched devices. Microsoft has released an unscheduled patch for PrintNightmare, but it is not possible to prevent this issue from being exploited on devices using special settings.

Get Printer Driver

Microsoft warned Thursday of a new security vulnerability in its Windows printer. The point optimization bug, followed by the name CVE-2021-34481, allows hackers who already have the ability to execute malicious code with limited system rights to upgrade those rights. Microsoft allows the code to access sensitive parts of Windows so that malware can run every time the device is restarted. "When the Windows Print Spooler service incorrectly handles privileged files, there is a level of privilege impairment," Microsoft wrote in Thursday's advisory. "An attacker who successfully exploited this vulnerability could execute arbitrary code with system privileges. The attacker could then install programs. View, modify, or delete data; or create new accounts with full user rights"

Microsoft said The attacker must first be able to execute code on the victim's system. Tip of exploiting nature is 'potential'. Microsoft also recommends that customers install previous security updates. A printer is software that manages jobs sent to the printer by temporarily storing data in a buffer and processing jobs sequentially or with job priority. Advertising

“The solution to this vulnerability is to stop and disable print spool services,” the advisor said Thursday. It provides a variety of methods that customers can use to do this.

This vulnerability was discovered by Jacob Baines, vulnerability researcher at security firm Dragos. Bynes is scheduled to speak at next month's Defcon Hackers Conference on "Bringing the Print Driver Vulnerability". Here is an executive summary:

What can you do when you see yourself as a Windows user who scores low and can't access the system? Install a weak print driver! In this lecture, you will learn how to introduce vulnerable print drivers into a fully patched system. Then, with three examples, you will learn how to use vulnerable drivers to boost the system.

In an email, Bynes said he reported the vulnerability to Microsoft in June and doesn't know why Microsoft is issuing the advice now.

" I was surprised by the advice, because it was so surprising it didn't relate to the date. The final I gave them (August 7) ​​and it was not released with a patch.” I am not sure what prompted them to publish the advisory without correction. This usually goes against the purpose of the disclosure program. But for my part, I have not disclosed the details of the vulnerability publicly and will not announce it until August 7 They may have seen the details posted elsewhere, but I haven't."

Microsoft said it was working on a patch but did not provide a timeline for its release.

Bainance described the severity of the vulnerability as "moderate."

"He explained that this is a CVSSv3 score of 7.8 (or higher), but at the end of the day that's just an increase in the local score." "I think this vulnerability has some interesting features that make it worth talking about, but there are always new issues to drive localized hits in Windows."

Microsoft tells customers to disable Windows printer to prevent piracy
microsoft-tells-customers-to-disable-windows-printer-to.html

https://safirsoft.com Vaccines, reopening and worker rebellion: The great technological row is back in office

Vaccines, reopening and worker rebellion: The great technological row is back in office

CEOs want workers back to their desks. For employees and other virus programs. Across the United States, the leaders of tech giants like Apple, Google...
https://safirsoft.com Brave.com, with the help of Google, squeezes malware

Brave.com, with the help of Google, squeezes malware

With a valid TLS certificate, faux Bravė.com can fool even the most secure of people. Malware that controls browsers and steals sensitive data.

...
https://safirsoft.com A privacy battle that Apple isn't fighting

A privacy battle that Apple isn't fighting

There are no browser-level privacy settings that California implements in Safari, iOS.

For at least a decade, privacy advocates have yearned ...

https://safirsoft.com Only 3G Kindles started their long and slow death this year

Only 3G Kindles started their long and slow death this year

3G 2021/2022 sunset affects even the eighth generation Kindle (2016).

On Wednesday, Amazon sent out an email notification to customers who pu...

https://safirsoft.com Huawei's latest flagship phone has HarmonyOS, Qualcomm SoC and lacks 5G

Huawei's latest flagship phone has HarmonyOS, Qualcomm SoC and lacks 5G

Faced with export bans and chip shortages, Huawei is ignoring what it can find.

Despite facing global chip shortage, US export ban and sharp ...

https://safirsoft.com Malicious PyPI packages steal developer data and inject code

Malicious PyPI packages steal developer data and inject code

The researchers warned that you should expect to see more malicious "Frankenstein" packages.

Open source packages estimated to have been down...