Windows Print Spooler Vulnerability


 Product(s):MicroStation
 Version(s):10.16.00.80
 Environment:N\A
 Area:Printing
 Subarea:Others

Problem

Windows Print Spooler Vulnerability

A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations.

A full listing of available update packages is in the Security Updates table in the following CVE
CVE-2021-34527 - Windows Print Spooler Remote Code Execution Vulnerability
CVE-2021-1675   - Windows Print Spooler Elevation of Privilege Vulnerability

Solution

Apply the following

  1. Security update released on or after July 6th 2021 KB5004945 which has the fixes
  2. Additional security measures KB5005010

See Also

CVE-2021-34527

CVE-2021-1675