rjohnson11
EVGA Forum Moderator
- Total Posts : 85038
- Reward points : 0
- Joined: 10/5/2004
- Location: Netherlands
- Status: offline
- Ribbons : 86
PrintNightmare: Microsoft Issues Critical Security Updates for Multiple Versions of Windows | TechPowerUp Remember that hideous, remotely exploitable vulnerability on Windows' Print Spooler service, which would enable remote attackers to run code with administrator privileges on your machine? Well, Microsoft seems to be waking up from this particular instance of PrintNightmare, as the company has already issued critical, out-of-band security updates (meaning that they're outside Microsoft's cadenced patch rollout) for several versions of windows. Since the Print Spooler service runs by default and is an integral part of Windows releases (likely since the NT platform development), Microsoft has even pushed out patches to OSs that aren't currently supported. Microsoft has issued correctives for Windows Server 2019, Windows Server 2012 R2, Windows Server 2008, Windows 8.1, Windows RT 8.1, a variety of supported versions of Windows 10, and even Windows 7. As per Microsoft, Windows Server 2012, Windows Server 2016, and Windows 10 Version 1607 products are still missing the security patches, but they're being actively worked on and should be released sooner rather than later. The security patches include mitigations for both the PrintNightmare issue (CVE-2021-34527), as well as another Print Spooler vulnerability that's been previously reported (CVE-2021-1675). The mitigations are being distributed via Windows Update, as always, and the relevant packages are KB5004945 through KB5004959 (depending on your version of Windows). Looks like Microsoft considered this to be a critical vulnerability. This patch was issued very quickly.
|
Cool GTX
EVGA Forum Moderator
- Total Posts : 31353
- Reward points : 0
- Joined: 12/12/2010
- Location: Folding for the Greater Good
- Status: offline
- Ribbons : 123
Re: PrintNightmare: Microsoft Issues Critical Security Updates for Multiple Versions of Wi
Wednesday, July 07, 2021 5:43 PM
(permalink)
a needed update for sure Microsoft rolls out emergency patch for critical PrintNightmare flaw (excerpt) Don't want the patch? Here's what to doIf you're truly leet and you think you don't need to install the patch, find out by firing up PowerShell and typing in "Get-Service -Name Spooler" to see if the print spooler is running at all. (If you regularly print documents, it probably is. If you don't know what PowerShell is, don't do this.) You can disable Print Spooler by typing the following into PowerShell, in order: Stop-Service -Name Spooler -Force
Set-Service -Name Spooler -StartupType Disabled
However, as Microsoft warns, "disabling the Print Spooler service disables the ability to print both locally and remotely." If you're a serious gamer who hasn't touched a piece of paper in three years, that may not matter.
Learn your way around the EVGA Forums, Rules & limits on new accounts Ultimate Self-Starter Thread For New Members
I am a Volunteer Moderator - not an EVGA employee
Older RIG projects RTX Project Nibbler
When someone does not use reason to reach their conclusion in the first place; you can't use reason to convince them otherwise!
|
Brad_Hawthorne
Insert Custom Title Here
- Total Posts : 18001
- Reward points : 0
- Joined: 6/6/2004
- Location: Dazed & Confused
- Status: offline
- Ribbons : 39
Re: PrintNightmare: Microsoft Issues Critical Security Updates for Multiple Versions of Wi
Thursday, July 08, 2021 9:48 PM
(permalink)
Cool GTX
a needed update for sure
Microsoft rolls out emergency patch for critical PrintNightmare flaw
Microsoft releases emergency security fix for PrintNightmare flaw — what to do(excerpt)
Don't want the patch? Here's what to do
If you're truly leet and you think you don't need to install the patch, find out by firing up PowerShell and typing in "Get-Service -Name Spooler" to see if the print spooler is running at all. (If you regularly print documents, it probably is. If you don't know what PowerShell is, don't do this.)
You can disable Print Spooler by typing the following into PowerShell, in order:
Stop-Service -Name Spooler -Force
Set-Service -Name Spooler -StartupType Disabled
However, as Microsoft warns, "disabling the Print Spooler service disables the ability to print both locally and remotely." If you're a serious gamer who hasn't touched a piece of paper in three years, that may not matter.
So, Microsoft's idea for a fix is to turn if off? That's not a fix.
|
Cool GTX
EVGA Forum Moderator
- Total Posts : 31353
- Reward points : 0
- Joined: 12/12/2010
- Location: Folding for the Greater Good
- Status: offline
- Ribbons : 123
Re: PrintNightmare: Microsoft Issues Critical Security Updates for Multiple Versions of Wi
Friday, July 09, 2021 7:38 PM
(permalink)
Brad_Hawthorne
So, Microsoft's idea for a fix is to turn if off? That's not a fix.
Stop service is Only needed - for those who do not want to load the actual patch
Learn your way around the EVGA Forums, Rules & limits on new accounts Ultimate Self-Starter Thread For New Members
I am a Volunteer Moderator - not an EVGA employee
Older RIG projects RTX Project Nibbler
When someone does not use reason to reach their conclusion in the first place; you can't use reason to convince them otherwise!
|
Bruno747
CLASSIFIED Member
- Total Posts : 3773
- Reward points : 0
- Joined: 1/13/2010
- Location: Looking on google to see what Nvidia is going to o
- Status: offline
- Ribbons : 5
Re: PrintNightmare: Microsoft Issues Critical Security Updates for Multiple Versions of Wi
Friday, July 09, 2021 11:22 PM
(permalink)
Cool GTX
Brad_Hawthorne
So, Microsoft's idea for a fix is to turn if off? That's not a fix.
Stop service is Only needed - for those who do not want to load the actual patch
Unless you happen to have server 2016 still in which case their current fix is move to 2019 or shut down the service.
X399 Designare EX, Threadripper 1950x, Overkill Water 560mm dual pass radiator. Heatkiller IV Block Dual 960 EVO 500gb Raid 0 bootable, Quad Channel 64gb DDR4 @ 2933/15-16-16-31, RTX 3090 FTW3 Ultra, Corsair RM850x, Tower 900
|