CVE 2021-34527- PrintNightmare Patch Released
7/08/2021

Microsoft has released an emergency out-of-band security update to address the critical zero-day vulnerability - known as "PrintNightmare", affecting the Windows Print Spooler service, which can permit remote threat actors to run arbitrary code and take over vulnerable systems. The PrintNightmare bug acknowledged by Microsoft post release of PoC exploits by several security researchers last week was tracked under CVE 2021-34527.

OVERVIEW

▪ Microsoft has released an emergency out-of-band security update to address the critical zero-day vulnerability - known as PrintNightmare, affecting the Windows Print Spooler service.

▪ The bug allowed remote threat actors to run arbitrary code and take over vulnerable hosts.

▪ US CERT has raised an alert for this critical remote code execution (RCE) vulnerability in the Windows Print Spooler, after PoC exploit posts by security researchers on June, 29 2021.

▪ It also identified that the Microsoft Patch Tuesday update for CVE-2021-1675 did not addressed the vulnerability.

▪ Microsoft after acknowledging the vulnerability on July, 1 2021 released advisory assigning the vulnerability CVE 2021-34527 having CVSS 8.8 base score.

Sign Up Here for Download