Back
Share
Aug 2022
12 Min Read
Watch Out: Print Nightmare is still on
The agency has added the vulnerability to its catalog of known exploited vulnerabilities, requiring the Federal Private Government agency to fix the issue by May 10,2022.
What is Microsoft print spooler Vulnerability?
A remote codes executes when the Windows Print Spooler service improperly performs privileged file operations. An attacker who exploited this vulnerability could execute arbitrary code with system privileges and install view, modify or delete the program. Also attacker can create a new account with full user privileges.
What is Print Nightmare?
Print nightmare is a vulnerability in the Windows Print Spooler service that could allow remote code execution. This may have been first fixed by Microsoft in the June’21 patch bundle and in early july’21 Microsoft released an patch for nightmare when researches claimed that this patch did not address all attacks. In Mid-July’21 Microsoft researching on another print nightmare at that time , Microsoft was proposing that organization use workaround to disable the windows print spooler service but this also removes print function.
Recently reported windows print spooler vulnerability:
This vulnerability, listed as CVE-2022-22718 (CVSS score: 7.8), is a critical remote
code execution vulnerability from last year, including 15 privilege escalation
vulnerabilities in April 2022 by Print Nightmares. Below vulnerabilities based on "evidence of aggressive abuse" have also been
added to the catalog:
- CVE-2018-6882 (CVSS score: 6.1), Zimbra Collaboration Suite Cross- Site Scripting vulnerability
- CVE-2019-3568 (CVSS Score: 9.8), WhatsApp VOIP Stack Buffer Overflow vulnerability
CISA has strongly urges all US organization to patch them as soon as possible to stop breaches.>
CD Bytes!
One of the biggest challenges today in cybersecurity is to quickly detect the vulnerabilities in the network and control the damage. Cloud Destinations enables you with nextgen vulnerability management which quickly detects and manages your Security controls effectively. Please reach out to info@clouddestinations.com for any business related queries.
Linkedin
