{"id":293641,"date":"2021-07-07T18:28:44","date_gmt":"2021-07-07T15:28:44","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/it-doesnt-work-update-your-windows-pc-now-to-patch-the-printnightmare-vulnerability-review-geek\/"},"modified":"2021-07-07T18:28:44","modified_gmt":"2021-07-07T15:28:44","slug":"it-doesnt-work-update-your-windows-pc-now-to-patch-the-printnightmare-vulnerability-review-geek","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/it-doesnt-work-update-your-windows-pc-now-to-patch-the-printnightmare-vulnerability-review-geek\/","title":{"rendered":"#It Doesn\u2019t Work] Update Your Windows PC Now to Patch the PrintNightmare Vulnerability \u2013 Review Geek"},"content":{"rendered":"

“#It Doesn\u2019t Work] Update Your Windows PC Now to Patch the PrintNightmare Vulnerability \u2013 Review Geek”<\/strong><\/p>\n

\n
\"A
Microsoft<\/span><\/figcaption><\/figure>\n

Microsoft has issued an emergency Windows update<\/a> to patch the PrintNightmare vulnerability, which allows hackers to take over PCs through the Print Spooler system. This update covers a wide range of Windows operating systems, including Windows 7, which exited Microsoft\u2019s security update cycle<\/a> late last year.<\/p>\n

Update, 7\/7\/21 4:31 pm Eastern:<\/strong> It turns out that this patch is somewhat useless. As reported by Bleeping Computer<\/em><\/a>, hackers can easily gain SYSTEM privileges on older machines by leveraging PrintNightmare\u2019s local privilege exploit component. On newer machines, hackers simply need to enable the Point and Print Restrictions policy to bypass Microsoft\u2019s patch, which is a small hurdle for someone who really wants to gain control of a PC or network.
\nFor the time being, the only way to defend yourself from PrintNightmare is to disable the Windows Print Spooler\u2014Microsoft\u2019s Security Response Center<\/a> has a step-by-step guide on this subject. We will continue to report on the PrintNightmare exploit as new information comes to light.<\/p>\n<\/blockquote>\n

PrintNightmare, also known as CVE-2021-34527, was discovered by researchers at the Chinese tech company Sangfor. These researchers published a proof of concept on PrintNightmare because they mistook it for a similar, previously patched vulnerability. This proof of concept provided the blueprint for hackers to exploit PrintNightmare, and according to Microsoft, several systems were compromised by the bug.<\/p>\n

A few days after Sangfor published its proof of concept, Microsoft classified PrintNightmare as a critical vulnerability. The exploit, if utilized, gives hackers full control over a system, and it affects all versions of Windows.<\/p>\n

Clearly, PrintNightmare presents a serious threat to individuals, businesses, and organizations with large networks, such as libraries. That\u2019s probably the reason why Microsoft is pushing an emergency update for nearly all versions of Windows released since 2008. The patch list includes Windows 10, Windows 8.1, Windows RT 8.1, Windows 7, and several versions of Windows Server, including the 2019, 2012 R2, and 2008 releases. Updates for Windows Server 2012 and 2016 are coming soon, along with an update for Windows 10 version 1607.<\/p>\n

Microsoft recommends that Windows users install this update immedia<\/a>tely. You can manually update Windows through the Windows Update<\/a> page in your Settings.<\/p>\n

Source: Microsoft<\/a> via The Verge<\/a><\/small>\n<\/div>\n