Lucene search

K
hiveproHive ProHIVEPRO:E7E537280075DE5C0B002F1AF44BE1C5
HistoryJul 08, 2021 - 1:50 p.m.

Emergency patches have been released by Microsoft for PrintNightmare

2021-07-0813:50:55
Hive Pro
www.hivepro.com
62
microsoft
printnightmare
print spooler

EPSS

0.967

Percentile

99.7%

THREAT LEVEL: Red.

For a detailed advisory, download the pdf file here.

Attackers have been targeting Windows Print Spooler services for almost 2 months now. It started with the vulnerability(CVE-2021-1675) being exploited in the wild. Soon a patch was released for the same. It was after 2 days that Microsoft found out that there exist another vulnerability which gives the attacker an access to execute a code in the victim’s system. This new vulnerability(CVE-2021-34527) has been named as PrintNightmare. An emergency patch has been released by Microsoft for some of the versions and a workflow as been made available for other versions.

Vulnerability Details

Patch Links

<https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-1675&gt;

<https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-34527&gt;

References

<https://securelist.com/quick-look-at-cve-2021-1675-cve-2021-34527-aka-printnightmare/103123/&gt;

<https://attackerkb.com/topics/MIHLz4sY3s/cve-2021-34527-printnightmare?referrer=notificationEmail#rapid7-analysis&gt;

<https://www.kaspersky.com/blog/printnightmare-vulnerability/40520/&gt;