|
|
|||
| Rule General Information |
|---|
| Release Date: | 2021-07-05 | |
| Rule Name: | Microsoft Windows Print Spooler Service Remote Code Execution Vulnerability (PrintNightmare)(CVE-2021-34527) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Microsoft Windows Print Spooler Components is a print spooler component of Microsoft Corporation in the United States. There is a security vulnerability in Microsoft Windows Print Spooler Components that allows an attacker to bypass the security verification of PfcAddPrinterDriver and install a malicious driver in the print server. | |
| Impact: | An attacker could exploit this vulnerability to execute arbitrary code with SYSTEM privilege. | |
| Affected OS: | Windows | |
| Reference: | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34527 |
|
| Solutions |
|---|
| Follow Microsoft advice: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34527 |