Hacking
229

PrintNightmare (CVE-2021-1675): Remote code execution in Windows Spooler Service






  03-Jul-2021 08:41:34



#cve #windows #spooler #rce


PrintNightmare (CVE-2021-1675): Remote code execution in Windows Spooler Service


This vulnerability can be used to achieve LPE and RCE. As for the RCE part, you need a user to authenticated on the Spooler service. However, this is still critical in Domain environment. Because normally DC will have Spooler service enable, a compromised domain user may use this vulnerability to control the DC.

Here are more hidden bombs in Spooler, which is not public known. We will share more RCE and LPE vulnerabilities in Windows Spooler, please stay tuned and wait our Blackhat talks ‘Diving Into Spooler: Discovering LPE and RCE Vulnerabilities in Windows Printer‘.


Source : 


https://github.com/afwu/PrintNightmare 




DISCUSSION
Nothing comment here :(
Login for comment and discussion.
Login Here
Popular Posts
Gps Tracker Seccodeid Free Too...
Djie sam soe Djie sam soe
General
5060
156
Top

Complete Basic Course in Kali...
Djie sam soe Djie sam soe
Linux
4434
2
Top

Free Proxy List
Sandidi Sandidi
Networking
2791
3
Top

Mass Reverse IP Unlimited
ImamSy ImamSy
Hacking
2063
10
Top

Report McAfee Antivirus Hurrri...
Indrasp Indrasp
Windows
1560
93
Top

Related Post

Subscribe

Subscribe free now for latest posts