Microsoft warns Windows users of unpatched critical bug

| | San Francisco
  • 0

Microsoft warns Windows users of unpatched critical bug

Friday, 02 July 2021 | IANS | San Francisco

Microsoft warns Windows users of unpatched critical bug

Microsoft has warned Windows users of an unpatched critical vulnerability that can help hackers install malicious programmes and access key data on their systems.

The critical flaw is present in the Windows Print Spooler service and is nicknamed 'PrintNightmare'.

The US national cyber agency has also admitted that the attacker can exploit 'PrintNightmare' to take control of an affected system.

"Microsoft is aware of and investigating a remote code execution vulnerability that affects Windows Print Spooler and has assigned CVE-2021-34527 to this vulnerability. This is an evolving situation," the company said in an update on Thursday.

A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations.

"An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights," Microsoft warned.

Microsoft said, "The code that contains the vulnerability is in all versions of Windows".

The Print Spooler service runs by default on Windows, including on client versions of the OS, Domain Controllers, and many Windows Server instances.

Vulnerabilities in the Windows Print Spooler service have been a headache for system administrators for years.

The US Cybersecurity and Infrastructure Security Agency (CISA) has encouraged administrators to disable the Windows Print spooler service in Domain Controllers and systems that do not print.

Microsoft is working on a patch and has asked users to disable the Windows Print Spooler service, or disable inbound remote printing through Group Policy.

If you haven't installed the latest batch of Windows updates on your system, do so and disable the print spool service.

"Exploits such as this underline how important it is to both securely authenticate users and be in a position to identify unusual network activity," Martin Lee, technical lead at Cisco Talos, told The Registrar.
 

Trending News

Trump mulls new bloc to sideline EU and shake up NATO

Trump mulls new bloc to sideline EU and shake up NATO

Luthras detained in Thailand after Delhi court rejects bail

Luthras detained in Thailand after Delhi court rejects bail

Trump offers million-dollar US entry

Trump offers million-dollar US entry

Justice department can unseal Epstein records : US Court

Justice department can unseal Epstein records : US Court

US, Japan hold joint flight drills amid Chinese military activity

US, Japan hold joint flight drills amid Chinese military activity

IMF urges China to address economic imbalances as trade surplus hits $1 trillion

IMF urges China to address economic imbalances as trade surplus hits $1 trillion

Govt Orders IndiGo to Cut 10% Flights

Govt Orders IndiGo to Cut 10% Flights

China positive on Putin’s India visit; calls for stronger trilateral cooperation

China positive on Putin’s India visit; calls for stronger trilateral cooperation

Corío Deepwater Port: India’s strategic gateway to South America

Corío Deepwater Port: India’s strategic gateway to South America

114 people were killed, including 63 children, in last week’s drone strikes in Sudan: WHO

114 people were killed, including 63 children, in last week’s drone strikes in Sudan: WHO

Ukraine President visits London for peace talks

Ukraine President visits London for peace talks

IndiGo chaos eases

IndiGo chaos eases

more

State Editions

NSUT holds third convocation ceremony with great splendour

14 December 2025 | Pioneer News Service | Delhi

Mounting financial stress, pressure to vacate house pushed family to commit suicide: Police

14 December 2025 | Pioneer News Service | Delhi

Govt to tackle air pollution with monthly meetings

14 December 2025 | Pioneer News Service | Delhi

Speed limit on Noida and Yamuna Expressway reduced

14 December 2025 | Pioneer News Service | Delhi

Govt directs women employees should not stay beyond office hours

14 December 2025 | Pioneer News Service | Delhi

Doctors report 20%-30% jump in respiratory cases

14 December 2025 | Pioneer News Service | Delhi
Delhi , Bhopal , Bhubaneswar , Ranchi , Lucknow , Chandigarh , Dehradun , Raipur

Sunday Edition

A Pivotal Engagement in the 1971 Indo-Pak War

14 December 2025 | Gaurav Bhakhri Lt  Colonel | Agenda

The 15 second rule: A pause is powerful

14 December 2025 | Gurudev Sri Sri Ravi Shankar | Agenda

The Indian paradox of power, participation, and exclusion

14 December 2025 | Team Agenda | Agenda

Why states act the way they do: A defence of rationality in global politics

14 December 2025 | Kanishk Shekhar | Agenda

A passage through ritual

14 December 2025 | Mythri Tewary | Agenda

Mizoram: Where scenic splendour meets soulful cuisine

14 December 2025 | Anil Rajput | Agenda