Why is Microsoft asking customers to replace Windows?
Final week, a vulnerability known as PrintNightmare was found by safety researchers. The PrintNightmare vulnerability permits unhealthy actors to make use of distant code execution, via which they will set up applications, create new accounts with admin rights and even modify knowledge.
It’s a harmful safety flaw because it offers attackers system-level privileges, which is as massive because it will get for Windows customers.
Microsoft acknowledged the vulnerability and mentioned, “A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges.” Microsoft additional defined that “an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.”
Has the vulnerability been fastened?
Sure, Microsoft has issued a safety replace that solves the issue. Nonetheless, customers should set up these replace instantly to maintain their methods protected. Microsoft mentioned that every one variations of Windows are weak. “Supported versions of Windows that do not have security updates available on July 6 will be updated shortly after July 6,” the corporate defined.
“The security updates released on and after July 6, 2021 contain protections for a remote code execution exploit in the Windows Print Spooler service known as “PrintNightmare”, documented in CVE-2021-34527, in addition to for CVE-2021-1675,” Microsoft additional defined.