—AXXEND CORPORATION—

Blog

Committed To Value, Committed To You. Delivering Excellence with Technology

Windows Print Spooler Remote Code Execution Vulnerability [Urgent Attention]

Microsoft has completed the investigations on a zero-day vulnerability that exists in the Windows Print Spooler Service and has released security updates to address this vulnerability. A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Please see the Security Updates table for the applicable update for your system. We recommend that you install these updates immediately. If you are unable to install these updates, kindly use the recommendations in the workaround sections in this CVE for information on how to help protect your system from this vulnerability. In addition to installing the updates, in order to secure your system, you must confirm that the following registry settings are set to 0 (zero) or are not defined (Note: These registry keys do not exist by default, and therefore are already at the secure setting.), also that your Group Policy setting are correct (see FAQ): Reference https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34527 For more info contact us: sales@axxendcorp.com | +233 30 2437786