Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
symantecSymantec Security ResponseSMNTC-54928
HistoryAug 14, 2012 - 12:00 a.m.

Microsoft Windows Print Spooler CVE-2012-1851 Remote Code Execution Vulnerability

2012-08-1400:00:00
Symantec Security Response
www.symantec.com
14

0.947 High

EPSS

Percentile

99.3%

JSON

Description

Microsoft Windows is prone to a remote code-execution vulnerability that affects the Print Spooler service. Attackers can exploit this issue to execute arbitrary code with SYSTEM-level privileges, which can result in the complete compromise of affected computers.

Technologies Affected

  • Microsoft Windows XP
  • Microsoft Windows XP Professional x64 Edition
  • Microsoft Windows XP Professional x64 Edition SP2
  • Microsoft Windows XP Service Pack 3

Recommendations

Block external access at the network boundary, unless external parties require service.
Use network access controls to regulate external access to computers at the network perimeter. Permit access to services for trusted or internal computers and networks only.

Modify default configuration files to disable any unwanted behavior.
Ensure that unwanted accounts are disabled on all affected computers.

Microsoft has released fixes and an advisory. Please see the references for details.

CPENameOperatorVersion
microsoft windows xp service packeq3

Related

seebug 1
cve 1
prion 1
cvelist 1
nvd 1
checkpoint_advisories 1
threatpost 1
mskb 1
openvas 2
nessus 1
securityvulns 1
seebug
seebug
Microsoft Windows Print Spooler θΏœη¨‹δ»£η ζ‰§θ‘ŒζΌζ΄ž(CVE-2012-1851)
2012-08-18 00:00:00
cve
cve
CVE-2012-1851
2012-08-15 01:55:01
prion
prion
Format string
2012-08-15 01:55:00
cvelist
cvelist
CVE-2012-1851
2012-08-15 01:00:00
nvd
nvd
CVE-2012-1851
2012-08-15 01:55:01
checkpoint_advisories
checkpoint_advisories
Microsoft Windows Print Spooler Format String Code Execution (MS12-054; CVE-2012-1851)
2012-08-14 00:00:00
threatpost
threatpost
Microsoft Patches Critical MS12-060 Office Flaw Being Used in Targeted Attacks
2012-08-14 17:31:01
mskb
mskb
MS12-054: Vulnerabilities in Windows networking components could allow remote code execution: August 14, 2012
2012-08-14 00:00:00
openvas
openvas
Microsoft Windows Networking Components Remote Code Execution Vulnerabilities (2733594)
2012-08-15 00:00:00
Microsoft Windows Networking Components Remote Code Execution Vulnerabilities (2733594)
2012-08-15 00:00:00
nessus
nessus
MS12-054: Vulnerabilities in Windows Networking Components Could Allow Remote Code Execution (2733594)
2012-08-15 00:00:00
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2012-08-20 00:00:00

0.947 High

EPSS

Percentile

99.3%

JSON
Related for SMNTC-54928
seebug1cve1prion1cvelist1nvd1checkpoint_advisories1threatpost1mskb1openvas2nessus1securityvulns1