PrintNightmare (CVE-2021-34527) - an RCE, zero-day flaw fixed in Windows Print Spooler

PrintNightmare (CVE-2021-34527) - an RCE, zero-day flaw fixed in Windows Print Spooler

Hello everyone,

 

CVE-2021-34527, an RCE vulnerability, dubbed PrintNightmare affects Windows print spooler. The print spooler is a default component in all Windows systems that allows the computer to interact with the printer and order the print jobs in your queue. This vulnerability is due to improper privileged file operations performed by the print spooler. It's a critical vulnerability that allows attackers to remotely execute code with system-level privileges on affected machines. After security researchers accidentally published proof-of-concept (PoC) exploit code, Microsoft has now issued out-of-band security updates to address the flaw. All versions of Windows are vulnerable. 

 

Resolution:

Vulnerability Manager Plus supports detection and patching of CVE-2021-34527.

 

Note: Update the vulnerability database and scan all the machines in your network to detect the machines affected by CVE-2021-34527 and related missing patches.

 

To patch the vulnerability from the console,

  • Navigate to Threats > Zero-day vulnerabilities.

  • Select "Zero_Day_CVE-2021-34527" in the Vulnerability Type filter.

  • All the patches fixing CVE-2021-34527 will be displayed.

  • Select the patches and click on Install Patch.

 

Alternatively, you can find the relevant patches in this missing patches view by searching for the bulletin ID/Patch ID mentioned below:

 

Bulletin ID

Patch ID

MS21-JUL14

31697
31696
31690
31691
31692
31694
31695
31693

MS21-JUL13

31683
31684
31686
31688
31682
31687
31689
31681
31680
31679
31678
31677
31676
31675

MS21-JUL12

31673
31674
31667
31668
31669
31671
31672
31670

 

Update (8/07/2021):

Patches for Windows server 2012, Windows server 2016, Windows 10 version 1607 are now supported in our product.

 

You can find patches for those operating systems in the missing patches view by searching for the bulletin ID/Patch ID mentioned below:

 

Bulletin ID

Patch ID

MS21-JUL14

31701

MS21-JUL13

31700
31699
31698

MS21-JUL12

31702