https://safirsoft.com A critical vulnerability in the Windows Print Spooler service allows computers to execute remote code

Hot Potato: This is not the first time that IT managers and users have been notified of an error with the Windows Print Spooler service. The latest 0-day vulnerability in this Windows version was apparently explained at the annual Black Hat Security Conference, however, security researchers mistakenly released a proof of concept early on, and now Microsoft is warning users about 0-days. Active defect exploited in nature.

Microsoft fixed an RCE vulnerability in its Windows Print Spooler service in a security update on Tuesday, June, but now another zero-term bug has surfaced that is currently being addressed by the company. Verified and found to be active. The US Cybersecurity and Infrastructure Agency (CISA) has described it as "vulnerable" to "very important" remote code execution, although Microsoft has yet to award it a score.

Essentially, a function in the Windows Print Spooler service allows a remote authentication attacker to execute arbitrary code with system privileges. “An attacker can install programs, view, modify or delete data, or create new accounts with full user rights,” Microsoft notes. /

https://safirsoft.com Major vulnerability in Windows Print Spooler service allows computers to execute remote code

System administrators are strongly advised to disable the Windows Print Spooler service on servers. /domain controllers/computers not used for printing, while another solution is to disable remote printing via Group Policy if users still want to print locally with a single machine with direct access connected.

This service bug caching tool is also reminiscent of what was discovered in 2016, with Microsoft noting that the latest vulnerabilities are present in all versions of Windows, although it is not yet clear which versions can be used. It is said that debugging is currently underway and that Microsoft may release a Patch Tuesday outside of its regular schedule.

Top image credit: PCMag

A critical vulnerability in the Windows Print Spooler service allows computers to execute remote code
a-critical-vulnerability-in-the-windows-print-spooler.html

https://safirsoft.com Microsoft released the first beta version of Windows 11

Microsoft released the first beta version of Windows 11

Windows 11 is one step closer to general availability because Microsoft has released Preview Build 22000.100 to members of the Windows Insider beta ch...
https://safirsoft.com Check out the Xbox Series S case and celebrate the launch of Microsoft Flight Simulator

Check out the Xbox Series S case and celebrate the launch of Microsoft Flight Simulator

What happened? Add Xbox Series S to your travel style. Xbox Australia and New Zealand, in collaboration with a Melbourne-based luggage company, in Jul...
https://safirsoft.com Microsoft is doing its best to ensure that Windows 11 hardware requirements are not met

Microsoft is doing its best to ensure that Windows 11 hardware requirements are not met

Why it matters: At a recent Ask Microsoft Anything meeting, the team confirmed that if a device isn't fully compatible with Windows 11, it won't even ...
https://safirsoft.com Microsoft Surface Duo 2 spies on the camera with massive mass updates

Microsoft Surface Duo 2 spies on the camera with massive mass updates

The Microsoft Surface Duo was one of the most attractive dual-screen / foldable smartphones of 2020, but it wasn't without its flaws. One of the most ...
https://safirsoft.com

...
https://safirsoft.com Biden says China is to blame for Microsoft Exchange cyber attacks

Biden says China is to blame for Microsoft Exchange cyber attacks

The big picture: The Biden government released a statement claiming with "high confidence" that China had exploited Microsoft Exchange vulnerabilities...