Windows 10 PrintNightmare continues with yet another exploit

The Windows print spooler vulnerability continues to exist exploited by researchers. Security researcher Benjampin Delpy establish several ways to bypass and take reward of the vulnerability known as PrintNightmare. Delpy recently shared a video showing that an exploit allows people to finer gain administrative privileges on a PC.

Microsoft issued a disquisitional security patch for the PrintNightmare vulnerability, simply researchers have found ways around it. Delpy'southward workaround involves a print server that can install a print driver. This driver can so launch a Dynamic Link Library (DLL) file with Arrangement privileges.

BleepingComputer installed the print commuter in question and saw the same results as Delpy. Despite the test computer being a fully patched PC running the latest version of Windows ten, a user with standard privileges was able to disable Windows Defender and gain full SYSTEM privileges.

— 🥝 Benjamin Delpy (@gentilkiwi) July 17, 2022

Delpy's method lets anyone who installs the remote impress driver gain administrative privileges on a PC. This access could be used in several ways, including creating new users, installing software, or deploying ransomware on a PC.

Delpy told BleepingComputer that he'south trying to force per unit area Microsoft to release fixes for the vulnerability.

A CERT advisory from Will Dormann outlines multiple mitigations for the vulnerability:

Stop and disable the Print Spooler service.
Disable entering remote printing through Grouping Policy.
Block RPC and SMB ports at the firewall.
Enable security prompts for Point and Print.
Restrict printer driver installation ability to administrators.

The advisory breaks down each option in more technical item. We also have a guide on how to mitigate the PrintNightmare vulnerability that we update every bit more information comes in.

We may earn a committee for purchases using our links. Learn more.

peek across

How to watch Apple's Peek Performance event

Apple is expected to announce a new iPhone SE, an upgraded iPad Air, and at to the lowest degree one new Mac at its Peek Functioning outcome. Here'due south how to tune in and stay up to date on all of the latest Apple tree news.

Simply the all-time

Bank check out Windows Central's Best of MWC 2022 picks!

Another Mobile World Congress is in the books, and this yr it brought plenty of heady announcements from Lenovo and Huawei. Hither'due south a look at what caught our attention, earning Windows Central's All-time of MWC 2022 awards.