The cybersecurity and Microsoft cleaning soap opera doesn’t cease. In Spain we echoed a information merchandise that talked about a essential system failure which was situated within the Home windows Print Queue, a service to handle the queue of paperwork to print. After patching all variations of Home windows affected by this drawback, Microsoft has detected one other failure In the identical place.
It might appear shocking to say the least, however it’s. After the looks of PrintNightmare, the essential flaw found by the CISA (United States Cybersecurity and Infrastructure Security Agency), Microsoft has once more situated one other vulnerability, rated CVE-2021-34481 and that additionally it is situated in the identical printing service.
This vulnerability, as uncovered by Microsoft, relies on “elevation of privilege when the Spooler service incorrectly performs privileged file operations. An attacker who efficiently exploited this vulnerability might execute arbitrary code with SYSTEM privileges.”
Extra glitches in Home windows
The brand new failure, if exploited, results in the identical outcomes that we noticed with PrintNightmare: arbitrary code execution and full management of the affected gadget. When the attacker has SYSTEM privileges in Home windows, he can “change or delete knowledge […] set up applications or create new accounts with full administrator rights “.
The process is strictly the identical as with PrintNightmare; till Microsoft releases a patch, the answer to keep away from being affected by this vulnerability is to disable the Home windows Print Queue. Though on this case the severity is considerably decrease, since on this case the attacker couldn’t exploit mentioned vulnerability remotely. Precisely, it’s worthwhile to have entry to the gadget that it needs to assault.
Nonetheless, the gravity is that the assault it’s straightforward to do, and it takes only a few privileges to do it. An attacker with adequate technical data and entry to a pc or laptop community might exploit such an issue and wreak havoc on it.
Once more, Microsoft has not clarified when there shall be a patch that fixes this new vulnerability or if as an alternative they are going to concentrate on conducting a radical investigation to find attainable new hidden vulnerabilities. The Patch Tuesday It has already occurred, so given the severity of the vulnerability Microsoft might repair this patch within the subsequent few days, however it’s on no account sure.
It is definitely been a troublesome week for Microsoft. To the issue of PrintNightmare the actual fact is added that the replace that patches the primary vulnerability is inflicting issues with some printers, particularly a few of the Zebra model. An inconvenience that has generated complaints amongst some customers.
You may additionally like…
Comply with the subjects that curiosity you