Microsoft issues an urgent patch to address a critical PrintNightmare vulnerability

Rate this post

Microsoft is preparing to improve the newly announced Windows 11 OS before it is released later this year, but today it issues an urgent patch to address a critical vulnerability in the current Windows version. Did. The Redmond Giants have issued out-of-band security updates for various Windows versions, including Windows 7.

For those who don’t know, a vulnerability called “Print Nightmare” was recently revealed by a team of security researchers.It essentially allows an attacker to do Remotely Run code in your system using a flaw in the Windows Print Spooler service.. Therefore, this zero-day vulnerability could allow an attacker to execute remote code to install a program, create a new account, and modify data with full administrator privileges.

This happened a few days ago when Sangfor researchers accidentally shared a proof of concept (POC) code online. They planned to address various zero-day vulnerabilities in the Windows Print Spooler service at their annual Black Hat conference, and believed that Microsoft had already patched the “Print Nightmare” vulnerabilities.In front of them It was deleted POC from the web has already been forked on Github.

As a result, Microsoft has issued patches for Windows Server 2019, Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, and various other supported versions of Windows 10. Surprisingly, the company also issued an update patch for Windows 7. We stopped supporting last year. However, Windows 7 is still known to power millions of devices around the world, so it was important for Microsoft to issue the aforementioned patch to resolve a critical flaw. ..

The company has not yet published patches for Windows Server 2012, Windows Server 2016, and Windows 10 v1607.But it says it “These versions of Windows security updates will be released shortly.” Therefore, if you receive a patch update related to the Windows Print Spooler service, Microsoft will “Install these updates immediately” To avoid malicious attacks.