PrintNightmare patch released on all Windows versions

Must Read
Sienna Rowley
Sienna Rowley
Sienna is an editor at Cloud Host News. She is an internet enthusiast, always eager to explore the latest trend in the tech space. She is a modest family woman who loves traveling in her free time.

Microsoft has released the KB5004948 emergency security update to resolve the Windows Print Spooler PrintNightmare vulnerability on all Windows 10 editions i.e. Windows 10 1607 and Windows Server 2016.

Microsoft said in the Windows message center that they have released an update for all affected Windows versions that haven’t reached EOL(end of life) yet.

The PrintNightmare bug traced as CVE-2021-34527 allows attackers to gain control over affected servers through remote code execution (RCE) with SYSTEM privileges.

To help you install the out of band security updates, we have provided few support documents below:

Microsoft recommends users install this update on all compatible Windows client and server operating systems.

Additionally, you have the option to configure the RestrictDriverInstallationToAdministrators registry setting so that non-admins can’t install signed printer drivers on a print server. For additional information, you can see KB5005010.

Microsoft’s PrintNightmare security patch is unfinished

Even though Microsoft said the security update fixes the PrintNightmare vulnerability, security researchers have identified that the patch is unfinished and can be circumvented to perform both remote code execution and local privilege escalation while having the official fix installed.

Till any working patch from Microsoft is released, Windows users and admins are advised to do either one of the following steps:

Meanwhile, CISA has also published a notification on the PrintNightmare zero-day previous week fostering security professionals to disable the Windows Print Spooler service on systems not utilized for printing.

Looking for more Windows news? Signup for our newsletter for the latest update.

- Advertisement -spot_img
Latest News

SparkyLinux 6.6 Now Available to Download

Debian-based GNU/Linux distro, SparkyLinux has got a new update Sparky 6.6 named as Po Tolo. Based on Debian 11, Sparky...
- Advertisement -spot_img

More Articles Like This